Remote Code Execution Vulnerability in Check Point VPN-1 Products via Aggressive Mode IKE

Remote Code Execution Vulnerability in Check Point VPN-1 Products via Aggressive Mode IKE

CVE-2004-0699 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Heap-based buffer overflow in ASN.1 decoding library in Check Point VPN-1 products, when Aggressive Mode IKE is implemented, allows remote attackers to execute arbitrary code by initiating an IKE negotiation and then sending an IKE packet with malformed ASN.1 data.

Learn more about our Web Application Penetration Testing UK.