Vulnerability Details CVE-2011-1827
Multiple unspecified vulnerabilities in Check Point SSL Network Extender (SNX), SecureWorkSpace, and Endpoint Security On-Demand, as distributed by SecurePlatform, IPSO6, Connectra, and VSX, allow remote attackers to execute arbitrary code via vectors involving a (1) ActiveX control or (2) Java applet.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.041
EPSS Ranking 88.0%
CVSS Severity
CVSS v2 Score 9.3
References
- http://www.securityfocus.com/bid/47695
- http://www.vupen.com/english/advisories/2011/1162
- https://supportcenter.checkpoint.com/supportcenter/portal?solutionid=sk62410
- https://www.sec-consult.com/en/advisories.html#a68
- http://www.securityfocus.com/bid/47695
- http://www.vupen.com/english/advisories/2011/1162
- https://supportcenter.checkpoint.com/supportcenter/portal?solutionid=sk62410
- https://www.sec-consult.com/en/advisories.html#a68
Products affected by CVE-2011-1827
-
cpe:2.3:a:checkpoint:connectra_ngx:r66.1
-
cpe:2.3:a:checkpoint:connectra_ngx:r66.1n
-
cpe:2.3:a:checkpoint:vpn-1:r65.70
-
cpe:2.3:a:checkpoint:vpn-1:r70.40
-
cpe:2.3:a:checkpoint:vpn-1:r71.30
-
cpe:2.3:a:checkpoint:vpn-1:r75
-
cpe:2.3:a:checkpoint:vpn-1_firewall-1_vsx:r65.20
-
cpe:2.3:a:checkpoint:vpn-1_firewall-1_vsx:r67