Page 3 of 22 results (0.002 seconds)

CVSS: 7.5EPSS: 2%CPEs: 3EXPL: 0

Check Point VPN-1/FireWall-1 4.1 and earlier improperly retransmits encapsulated FWS packets, even if they do not come from a valid FWZ client, aka "Retransmission of Encapsulated Packets." • http://www.checkpoint.com/techsupport/alerts/list_vun.html#Retransmission_of http://www.osvdb.org/4415 https://exchange.xforce.ibmcloud.com/vulnerabilities/5469 •

CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0

Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to bypass the directionality check via fragmented TCP connection requests or reopening closed TCP connection requests, aka "One-way Connection Enforcement Bypass." • http://www.checkpoint.com/techsupport/alerts/list_vun.html#One-way_Connection http://www.osvdb.org/4419 https://exchange.xforce.ibmcloud.com/vulnerabilities/5468 •

CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0

The OPSEC communications authentication mechanism (fwn1) in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to spoof connections, aka the "OPSEC Authentication Vulnerability." • http://www.checkpoint.com/techsupport/alerts/list_vun.html#OPSEC_Authentication http://www.osvdb.org/4420 https://exchange.xforce.ibmcloud.com/vulnerabilities/5471 •

CVSS: 5.0EPSS: 1%CPEs: 3EXPL: 0

Buffer overflow in Getkey in the protocol checker in the inter-module communication mechanism in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to cause a denial of service. • http://www.checkpoint.com/techsupport/alerts/list_vun.html#Getkey_Buffer http://www.osvdb.org/4422 https://exchange.xforce.ibmcloud.com/vulnerabilities/5139 •

CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0

The seed generation mechanism in the inter-module S/Key authentication mechanism in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to bypass authentication via a brute force attack, aka "One-time (s/key) Password Authentication." • http://www.checkpoint.com/techsupport/alerts/list_vun.html#One-time_Password http://www.osvdb.org/4421 https://exchange.xforce.ibmcloud.com/vulnerabilities/5137 •