Check Point Connectra NGX R62 Security Bypass Vulnerability
CVE-2007-0471

Currently unrated

Key Information:

Vendor: Checkpoint
Status: Connectra Ngx
Vendor: CVE Published:; 24 January 2007

What is CVE-2007-0471?

The Integrity Clientless Security (ICS) component in Check Point Connectra NGX R62 and earlier versions is vulnerable to a security bypass that allows remote attackers to exploit a crafted Report parameter. This vulnerability permits attackers to retrieve a valid ICSCookie authentication token, effectively enabling them to bypass established security requirements and gain unauthorized access. This poses significant risks to network integrity and confidentiality.

References

http://securitytracker.com/id?1017559

vdb-entryx_refsource_SECTRACK

http://lists.grok.org.uk/pipermail/full-disclosure/2007-J...

mailing-listx_refsource_FULLDISC

http://www.securityfocus.com/archive/1/457683/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 24, 2007
Vulnerability Reserved
Jan 23, 2007

Checkpoint

What is CVE-2007-0471?

References

Timeline