Buffer Overflow Vulnerability in Check Point Firewall-1 PKI Web Service
CVE-2009-1227

Currently unrated

Key Information:

Vendor
Checkpoint
Vendor
CVE Published:
2 April 2009

Summary

A buffer overflow vulnerability exists in the PKI Web Service of Check Point Firewall-1, allowing remote attackers to potentially cause a denial of service or execute arbitrary code. This vulnerability arises from a long Authorization or Referer HTTP header directed at TCP port 18624. While Check Point has disputed the existence of this vulnerability, stating that thorough analysis has proven their systems are secure, concerns remain regarding the reliability of the original research and the inability to reproduce the attack under controlled conditions.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.