| |||||||||||||
| Test ID: | 10710 |
| Category: | Firewalls |
| Title: | Checkpoint SecuRemote information leakage |
| Summary: | Checkpoint SecuRemote information leakage |
| Description: | The remote host seems to be a Checkpoint FireWall-1 running SecuRemote. The SecuRemote service contains a vulnerability that allows attackers to gain information about the hosts, networks, and users configured on the Firewall. This will enable attackers to focus their attack strategy. You should not let this information leak out. Solution: Either block the SecuRemote's ports (TCP 256 and 264) to untrusted networks, or upgrade to the latest version of Checkpoint's Firewall-1. Workaround: You could restrict the topology download, so that only authenticated users can download it. Go to Policy Properties Desktop Security of your Policy Editor and uncheck 'respond to unauthenticated topology requests'. After installing the Policy only authenticated Users can download the Topology. Risk factor : Medium Reference : http://online.securityfocus.com/archive/1/197566 http://online.securityfocus.com/bid/3058 For More Information: http://www.securiteam.com/securitynews/5HP0D2A4UC.html |
| Cross-Ref: |
BugTraq ID: 3058 Common Vulnerability Exposure (CVE) ID: CVE-2001-1303 Bugtraq: 20010718 Firewall-1 Information leak (Google Search) http://www.securityfocus.com/archive/1/197566 http://www.securityfocus.com/bid/3058 XForce ISS Database: fw1-securemote-gain-information(6857) http://xforce.iss.net/static/6857.php http://www.osvdb.org/588 |
| Copyright | This script is Copyright (C) 2001 SecuriTeam |
| This is only one of 24808 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |
|
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois
© 1998-2010 E-Soft Inc. All rights reserved.