Heap-based buffer overflow in ASN.1 decoding library in Check Point VPN-1 products, when Aggressive Mode IKE is implemented, allows remote malicious users to execute arbitrary code by initiating an IKE negotiation and then sending an IKE packet with malformed ASN.1 data.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
checkpoint firewall-1 4.1 |
||
checkpoint vpn-1 |