Vulnerabilities > Checkpoint > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-05-16 | CVE-2007-2689 | Remote Security vulnerability in Checkpoint web Intelligence Gold Check Point Web Intelligence does not properly handle certain full-width and half-width Unicode character encodings, which might allow remote attackers to evade detection of HTTP traffic. | 7.8 |
| 2007-04-24 | CVE-2007-2174 | Local Privilege Escalation vulnerability in Checkpoint Zonealarm 5.0.63.0 The IOCTL handling in srescan.sys in the ZoneAlarm Spyware Removal Engine (SRE) in Check Point ZoneAlarm before 5.0.156.0 allows local users to execute arbitrary code via certain IOCTL lrp parameter addresses. | 7.2 |
| 2007-01-24 | CVE-2007-0471 | Permissions, Privileges, and Access Controls vulnerability in Checkpoint Connectra NGX R60/R62 sre/params.php in the Integrity Clientless Security (ICS) component in Check Point Connectra NGX R62 3.x and earlier before Security Hotfix 5, and possibly VPN-1 NGX R62, allows remote attackers to bypass security requirements via a crafted Report parameter, which returns a valid ICSCookie authentication token. | 7.5 |
| 2006-01-18 | CVE-2006-0255 | Local Privilege Escalation vulnerability in Checkpoint Vpn-1 4.1 Unquoted Windows search path vulnerability in Check Point VPN-1 SecureClient might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run when SecureClient attempts to launch the Sr_GUI.exe program. | 7.2 |
| 2005-12-31 | CVE-2005-2932 | Permissions, Privileges, and Access Controls vulnerability in Checkpoint Zonealarm and Zonealarm Security Suite Multiple Check Point Zone Labs ZoneAlarm products before 7.0.362, including ZoneAlarm Security Suite 5.5.062.004 and 6.5.737, use insecure default permissions for critical files, which allows local users to gain privileges or bypass security controls. | 7.2 |
| 2005-11-18 | CVE-2005-3673 | Denial of Service vulnerability in Check Point Firewall-1 and VPN-1 ISAKMP IKE The Internet Key Exchange version 1 (IKEv1) implementation in Check Point products allows remote attackers to cause a denial of service via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. | 7.8 |
| 2005-09-14 | CVE-2005-2889 | Security Bypass vulnerability in Checkpoint Connectra NGX R60 Check Point NGX R60 does not properly verify packets against the predefined service group "CIFS" rule, which allows remote attackers to bypass intended restrictions. | 7.5 |
| 2005-07-19 | CVE-2005-2313 | Local Information Disclosure vulnerability in Check Point SecuRemote NG Check Point SecuRemote NG with Application Intelligence R54 allows attackers to obtain credentials and gain privileges via unknown attack vectors. | 7.2 |
| 2004-12-31 | CVE-2004-2679 | Information Disclosure vulnerability in Checkpoint Firewall-1 4.0/4.1/R55 Check Point Firewall-1 4.1 up to NG AI R55 allows remote attackers to obtain potentially sensitive information by sending an Internet Key Exchange (IKE) with a certain Vendor ID payload that causes Firewall-1 to return a response containing version and other information. | 7.8 |
| 2004-11-23 | CVE-2004-0079 | NULL Pointer Dereference vulnerability in multiple products The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. | 7.5 |