CVE-2011-1827

Published Oct 5, 2011

Last updated 13 years ago

CVSS info 9.3

Overview

Description: Multiple unspecified vulnerabilities in Check Point SSL Network Extender (SNX), SecureWorkSpace, and Endpoint Security On-Demand, as distributed by SecurePlatform, IPSO6, Connectra, and VSX, allow remote attackers to execute arbitrary code via vectors involving a (1) ActiveX control or (2) Java applet.
Source: cve@mitre.org
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 9.3
Impact score: 10
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:checkpoint:connectra_ngx:r66.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "62BDB1C3-D758-419E-A6AC-E233F99CF268"
          },
          {
            "criteria": "cpe:2.3:a:checkpoint:connectra_ngx:r66.1n:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9419EED4-63F0-46A9-AC83-79C2FF60A73B"
          },
          {
            "criteria": "cpe:2.3:a:checkpoint:vpn-1:r65.70:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D56F0F77-45E4-44D0-96E6-EEA9DC857701"
          },
          {
            "criteria": "cpe:2.3:a:checkpoint:vpn-1:r70.40:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "54839D2D-9ED5-4808-85C0-AA428A29A6A6"
          },
          {
            "criteria": "cpe:2.3:a:checkpoint:vpn-1:r71.30:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1472550E-7AFB-4088-9626-43122F5929E3"
          },
          {
            "criteria": "cpe:2.3:a:checkpoint:vpn-1:r75:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E601F27E-4F72-430F-931D-11F6A4DEBD96"
          },
          {
            "criteria": "cpe:2.3:a:checkpoint:vpn-1_firewall-1_vsx:r65.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB63AE56-C53D-4AB4-9E62-A749829A5C2B"
          },
          {
            "criteria": "cpe:2.3:a:checkpoint:vpn-1_firewall-1_vsx:r67:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0AF453B3-8E28-4F4C-AA83-044391C02954"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References