Lucene search

K

[email protected]NVD:CVE-2005-4093

HistoryDec 08, 2005 - 11:03 a.m.

CVE-2005-4093

2005-12-0811:03:00

CWE-264

[email protected]

web.nvd.nist.gov

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.024 Low

EPSS

Percentile

90.0%

Check Point VPN-1 SecureClient NG with Application Intelligence R56, NG FP1, 4.0, and 4.1 allows remote attackers to bypass security policies by modifying the local copy of the local.scv policy file after it has been downloaded from the VPN Endpoint.

Affected configurations

NVD

Node

checkpointsecureclient_ngfp1

OR

checkpointsecureclient_ngMatchr56

OR

checkpointvpn-1_secureclientMatch4.0

OR

checkpointvpn-1_secureclientMatch4.1

References

lists.grok.org.uk/pipermail/full-disclosure/2005-December/039634.html

secunia.com/advisories/17837

secunia.com/advisories/23395

securitytracker.com/id?1015326

www.mail-archive.com/swinog%40lists.swinog.ch/msg00798.html

www.mail-archive.com/swinog%40lists.swinog.ch/msg00799.html

www.securityfocus.com/bid/15757

www.us.debian.org/security/2006/dsa-1237

www.vupen.com/english/advisories/2005/2808

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.024 Low

EPSS

Percentile

90.0%

Related for NVD:CVE-2005-4093

cvelist1 cve1 osv1 debian1 nessus1 openvas2