Check Point SSL VPN On-Demand应用程序远程代码执行漏洞

Bugtraq ID: 47695
CVE ID：CVE-2011-1827

SNX SecureWorkSpace和Endpoint Security On-Demand可从Connectra或security gateways下载的客户端，可实现按需远程连接。它们可使用Check Point Deployment Agent Java applet或ActiveX控件配置在浏览中。
应用程序SSL网络扩展器(SNX), SecureWorkSpace和Endpoint Security On-Demand通过浏览器配置时，容易受到恶意网站的攻击，导致在末端用户机器上执行任意恶意代码。
此漏洞不影响Check Point安全网关

Check Point Software VSX R67
Check Point Software VSX R65.20
Check Point Software SecurePlatform R75
Check Point Software SecurePlatform R75
Check Point Software SecurePlatform R71.30
Check Point Software SecurePlatform R70.40
Check Point Software SecurePlatform R70.40
Check Point Software SecurePlatform R65.70
Check Point Software IPSO6 R75
Check Point Software IPSO6 R71.30
Check Point Software IPSO6 R70.40
Check Point Software IPSO6 R65.70
Check Point Software Connectra R66.1n
Check Point Software Connectra R66.1
用户可参考如下供应商提供的安全公告获得补丁信息：
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk62410