VPN 1 Secureclient

DATE	CVE	VULNERABILITY TITLE	RISK
2008-02-08	CVE-2008-0662	Incorrect Permission Assignment for Critical Resource vulnerability in Checkpoint Vpn-1 Secureclient Ngair56/Ngxr60 The Auto Local Logon feature in Check Point VPN-1 SecuRemote/SecureClient NGX R60 and R56 for Windows caches credentials under the Checkpoint\SecuRemote registry key, which has Everyone/Full Control permissions, which allows local users to gain privileges by reading and reusing the credentials. local low complexity checkpoint CWE-732	7.8