Check Point Firewall-1 SmartDashboard Filter Buffer Overflow Vulnerability
BID:9870
Info
Check Point Firewall-1 SmartDashboard Filter Buffer Overflow Vulnerability
| Bugtraq ID: | 9870 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 15 2004 12:00AM |
| Updated: | Mar 15 2004 12:00AM |
| Credit: | Discovery is credited to Andreas Constantinides <[email protected]>. |
| Vulnerable: |
Check Point Software SmartDashboard |
| Not Vulnerable: | |
Discussion
Check Point Firewall-1 SmartDashboard Filter Buffer Overflow Vulnerability
It has been reported that Check Point Firewall-1 SmartDashboard may be prone to a buffer overflow vulnerability that may allow an attacker to execute arbitrary code on a vulnerable system in order to gain unauthorized access. The issue is reported to present itself when the SmartTracker utility is used to add a firewall filter for Firewall-1. An attacker may be able to cause a buffer overflow condition by supplying an excessive amount of data via the filter line.
It has been reported that this issue affects the details column of the application as well. This may allow an attacker to leverage this issue remotely by submitting an excessively long HTTP request. Providing an administrator of the affected software views the details of the request, the issue may be triggered.
It is likely that access to SmartDashboard requires administrator credentials, in which case this issue would not be considered a vulnerability. This has not been confirmed at the moment. Due to a lack of information further details cannot be outlined at the moment. This BID will be updated as more information becomes available.
This vulnerability is reported to affect SmartDashboard supplied with Check Point Software NG-AI R54 and NG-AI R55, however, other versions could be affected as well.
It has been reported that Check Point Firewall-1 SmartDashboard may be prone to a buffer overflow vulnerability that may allow an attacker to execute arbitrary code on a vulnerable system in order to gain unauthorized access. The issue is reported to present itself when the SmartTracker utility is used to add a firewall filter for Firewall-1. An attacker may be able to cause a buffer overflow condition by supplying an excessive amount of data via the filter line.
It has been reported that this issue affects the details column of the application as well. This may allow an attacker to leverage this issue remotely by submitting an excessively long HTTP request. Providing an administrator of the affected software views the details of the request, the issue may be triggered.
It is likely that access to SmartDashboard requires administrator credentials, in which case this issue would not be considered a vulnerability. This has not been confirmed at the moment. Due to a lack of information further details cannot be outlined at the moment. This BID will be updated as more information becomes available.
This vulnerability is reported to affect SmartDashboard supplied with Check Point Software NG-AI R54 and NG-AI R55, however, other versions could be affected as well.
Exploit / POC
Check Point Firewall-1 SmartDashboard Filter Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
Check Point Firewall-1 SmartDashboard Filter Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Check Point Firewall-1 SmartDashboard Filter Buffer Overflow Vulnerability
References:
References:
- FireWall-1 Product Homepage (Check Point Software)