Vulnerability Details CVE-2004-2679
Check Point Firewall-1 4.1 up to NG AI R55 allows remote attackers to obtain potentially sensitive information by sending an Internet Key Exchange (IKE) with a certain Vendor ID payload that causes Firewall-1 to return a response containing version and other information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 56.1%
CVSS Severity
CVSS v2 Score 7.8
References
- http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0477.html
- http://www.nta-monitor.com/news/checkpoint2004/index.htm
- http://www.securityfocus.com/bid/10558
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16434
- http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0477.html
- http://www.nta-monitor.com/news/checkpoint2004/index.htm
- http://www.securityfocus.com/bid/10558
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16434
Products affected by CVE-2004-2679
-
cpe:2.3:a:checkpoint:firewall-1:4.0
-
cpe:2.3:a:checkpoint:firewall-1:4.1
-
cpe:2.3:a:checkpoint:firewall-1:r55