Checkpoint Security Advisory - An ASN.1 issue has been discovered affecting Check Point VPN-1 products during negotiations of a VPN tunnel which may cause a buffer overrun, potentially compromising the gateway. In certain circumstances, this compromise could allow further network compromise.
e2966120dd7842b90c0ed92aaf808e3c591775ecdf54ad1c5c76debaad9468e6<table><tr><td>
ASN.1 Alert<!-- #EndEditable --></td>
</tr>
<tr>
<td colspan="2"><img src="../../images/home3/clear.gif" width="1" height="5"></td>
</tr>
<tr>
<td colspan="2"><img src="../../images/home3/grad_FECD66_sm.gif" width="52" height="1"></td>
</tr>
<tr>
<td colspan="2"><img src="../../images/home3/clear.gif" width="1" height="10"></td>
</tr>
<tr valign="top">
<td> </td>
<td><!-- #BeginEditable "Body" -->
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
<td class="bodyText">
<p class="SubTitle">28 Jul 2004</p>
<p>An ASN.1 issue has been discovered affecting Check Point
VPN-1 products during negotiations of a VPN tunnel which may
cause a buffer overrun, potentially compromising the gateway.
In certain circumstances, this compromise could allow further
network compromise.</p>
<p>Check Point Software customers who do not use Remote Access
VPNs or gateway-to-gateway VPNs, or who have upgraded to current
product versions (VPN-1/FireWall-1 R55 HFA-08, R54 HFA-412,
and VPN-1 SecuRemote/SecureClient R56 HF1) are <span class="bodyTextBold">NOT</span>
affected by this issue.</p>
<p>A single packet attack is only possible if Aggressive Mode
IKE is implemented. Check Point strongly discourages the use
of <a href="ike.html" class="LinkUnderline">Aggressive Mode
IKE</a> because it has inherent security limitations.</p>
<p>When using IKE without enabling Aggressive Mode, the single
packet attack is not possible, as the attacker must initiate
a real IKE negotiation in order to perform the attack. The
malformed IKE packet of this attack vector must be encrypted,
which prevents detection of it using a signature.</p>
<p>At the time of this alert, Check Point is not aware of any
organizations that have been affected by this issue. However,
in order to protect VPN-1 Gateways, Check Point recommends
that customers install an update on all enforcement modules.</p>
<p>The most recent Hotfix Accumulators (HFAs) and ASN.1 Hotfixes
address this issue. Software Subscription customers can download
updates for affected products using the links listed below.</p>
<p><span class="bodyTextBold">VPN-1/FireWall-1 NG with Application
Intelligence R55W<br>
ASN.1 Hotfix<br>
</span><a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=IPSO%203.7&patchlevel_selected=R55W" class="LinkNoUnderlineFootnote">IPSO</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=Linux&patchlevel_selected=R55W" class="LinkNoUnderlineFootnote">Linux</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=SecurePlatform&patchlevel_selected=R55W" class="LinkNoUnderlineFootnote">SecurePlatform</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=Solaris%202.9&patchlevel_selected=R55W" class="LinkNoUnderlineFootnote">Solaris</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=Windows%202003&patchlevel_selected=R55W" class="LinkNoUnderlineFootnote">Windows</a></p>
<p><span class="bodyTextBold">VPN-1/FireWall-1 NG with Application
Intelligence R55 ASN.1 HF</span><br>
<a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=IPSO%203.8&patchlevel_selected=R55" class="LinkNoUnderlineFootnote">IPSO
3.8</a> | <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=Linux%203.0&patchlevel_selected=R55" class="LinkNoUnderlineFootnote">Linux
3.0 (RHEL 3.0)</a></p>
<p><span class="bodyTextBold">VPN-1/FireWall-1 NG with Application
Intelligence R55 HFA-08</span><br>
<a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=IPSO%203.7&patchlevel_selected=R55%20-%20Hotfixes" class="LinkNoUnderlineFootnote">IPSO</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=Linux&patchlevel_selected=R55%20-%20Hotfixes" class="LinkNoUnderlineFootnote">Linux</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=SecurePlatform&patchlevel_selected=R55%20-%20Hotfixes" class="LinkNoUnderlineFootnote">SecurePlatform</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=Solaris%202.9&patchlevel_selected=R55%20-%20Hotfixes" class="LinkNoUnderlineFootnote">Solaris</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=Windows%202003&patchlevel_selected=R55%20-%20Hotfixes" class="LinkNoUnderlineFootnote">Windows</a></p>
<p><span class="bodyTextBold">VPN-1/FireWall-1 NG with Application
Intelligence R54 HFA-412</span><br>
<a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=IPSO%203.7&patchlevel_selected=R54%20-%20Hotfixes" class="LinkNoUnderlineFootnote">IPSO</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=Linux&patchlevel_selected=R54%20-%20Hotfixes" class="LinkNoUnderlineFootnote">Linux</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=SecurePlatform&patchlevel_selected=R54%20-%20Hotfixes" class="LinkNoUnderlineFootnote">SecurePlatform</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=Solaris%202.9&patchlevel_selected=R54%20-%20Hotfixes" class="LinkNoUnderlineFootnote">Solaris</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=Windows%202000&patchlevel_selected=R54%20-%20Hotfixes" class="LinkNoUnderlineFootnote">Windows</a></p>
<p><span class="bodyTextBold">VPN-1/FireWall-1 Next Generation
FP3 ASN.1 Hotfix</span><br>
<a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=IPSO%203.6&patchlevel_selected=FP3%20-%20Hotfixes" class="LinkNoUnderlineFootnote">IPSO</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=Linux&patchlevel_selected=FP3%20-%20Hotfixes" class="LinkNoUnderlineFootnote">Linux</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=SecurePlatform%20FP3%20Edition%202&patchlevel_selected=FP3%20-%20Hotfixes" class="LinkNoUnderlineFootnote">SecurePlatform</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=Solaris%202.8&patchlevel_selected=FP3%20-%20Hotfixes" class="LinkNoUnderlineFootnote">Solaris</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=Windows%202000&patchlevel_selected=FP3%20-%20Hotfixes" class="LinkNoUnderlineFootnote">Windows</a></p>
<p><span class="bodyTextBold">VPN-1 SecuRemote/SecureClient
NG with Application Intelligence</span><br>
<a href="http://www.checkpoint.com/techsupport/downloads_sr.html" class="LinkNoUnderlineFootnote">R56
HF-01</a> | <a href="http://www.checkpoint.com/techsupport/downloads_sr.html" class="LinkNoUnderlineFootnote">R55
HFA-03</a></p>
<p><span class="bodyTextBold">Provider-1 NG with Application
Intelligence R55 HFA-08</span><br>
<a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=Provider-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=Linux&patchlevel_selected=R55%20-%20Hotfixes" class="LinkNoUnderlineFootnote">Linux</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=Provider-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=SecurePlatform&patchlevel_selected=R55%20-%20Hotfixes" class="LinkNoUnderlineFootnote">SecurePlatform</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=Provider-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=Solaris%202.9&patchlevel_selected=R55%20-%20Hotfixes" class="LinkNoUnderlineFootnote">Solaris</a></p>
<p><span class="bodyTextBold">Provider-1 NG with Application
Intelligence R54 HFA-412</span><br>
<a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=Provider-1&version_selected=NG%20with%20Application%20Intelligence&os_selected=Solaris%202.9&patchlevel_selected=R54%20-%20Hotfixes" class="LinkNoUnderlineFootnote">Solaris</a>
</p>
<p><span class="bodyTextBold">FireWall-1 GX 2.5 ASN.1 Hotfix</span><br>
<a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=FireWall-1%20GX&version_selected=v2.5&os_selected=IPSO&patchlevel_selected=v2.5" class="LinkNoUnderlineFootnote">IPSO</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=FireWall-1%20GX&version_selected=v2.5&os_selected=Linux&patchlevel_selected=v2.5" class="LinkNoUnderlineFootnote">Linux</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=FireWall-1%20GX&version_selected=v2.5&os_selected=SecurePlatform&patchlevel_selected=v2.5" class="LinkNoUnderlineFootnote">SecurePlatform</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=FireWall-1%20GX&version_selected=v2.5&os_selected=Solaris&patchlevel_selected=v2.5" class="LinkNoUnderlineFootnote">Solaris</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=FireWall-1%20GX&version_selected=v2.5&os_selected=Windows&patchlevel_selected=v2.5" class="LinkNoUnderlineFootnote">Windows</a></p>
<p><span class="bodyTextBold">FireWall-1 GX 2.0 ASN.1 Hotfix</span><br>
<a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=FireWall-1%20GX&version_selected=v2.0&os_selected=IPSO&patchlevel_selected=NG%20FP2%20-%20v2.0" class="LinkNoUnderlineFootnote">IPSO</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=FireWall-1%20GX&version_selected=v2.0&os_selected=Linux&patchlevel_selected=NG%20FP2%20-%20v2.0" class="LinkNoUnderlineFootnote">Linux</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=FireWall-1%20GX&version_selected=v2.0&os_selected=SecurePlatform&patchlevel_selected=NG%20FP2%20-%20v2.0" class="LinkNoUnderlineFootnote">SecurePlatform</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=FireWall-1%20GX&version_selected=v2.0&os_selected=Solaris&patchlevel_selected=NG%20FP2%20-%20v2.0" class="LinkNoUnderlineFootnote">Solaris</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=FireWall-1%20GX&version_selected=v2.0&os_selected=Windows&patchlevel_selected=NG%20FP2%20-%20v2.0" class="LinkNoUnderlineFootnote">Windows</a></p>
<p><span class="bodyTextBold">SSL Network Extender</span><br>
<a href="http://staging.us.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=SSL%20Network%20Extender&version_selected=NG%20with%20Application%20Intelligence&os_selected=Linux&patchlevel_selected=R55" class="LinkNoUnderlineFootnote">Linux</a>
| <a href="http://staging.us.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=SSL%20Network%20Extender&version_selected=NG%20with%20Application%20Intelligence&os_selected=SecurePlatform&patchlevel_selected=R55" class="LinkNoUnderlineFootnote">SecurePlatform</a>
| <a href="http://staging.us.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=SSL%20Network%20Extender&version_selected=NG%20with%20Application%20Intelligence&os_selected=Solaris%202.9&patchlevel_selected=R55" class="LinkNoUnderlineFootnote">Solaris</a>
| <a href="http://staging.us.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=SSL%20Network%20Extender&version_selected=NG%20with%20Application%20Intelligence&os_selected=Windows%202003&patchlevel_selected=R55" class="LinkNoUnderlineFootnote">Windows</a></p>
<p><span class="bodyTextBold">VPN-1/FireWall-1 VSX NG with Application
Intelligence<br>
Release 2 ASN.1 Hotfix</span><br>
<a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1%20VSX&version_selected=VSX%20NG%20with%20Application%20Intelligence%20Release%202&os_selected=IPSO%203.7&patchlevel_selected=VPN-1%20VSX%20Release%202" class="LinkNoUnderlineFootnote">IPSO</a></p>
<p><span class="bodyTextBold">VPN-1/FireWall-1 VSX NG with Application
Intelligence ASN.1 Hotfix</span><br>
<a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1%20VSX&version_selected=VSX%20NG%20with%20Application%20Intelligence&os_selected=SecurePlatform&patchlevel_selected=Initial%20Release" class="LinkNoUnderlineFootnote">SecurePlatform</a></p>
<p><span class="bodyTextBold">VPN-1/FireWall-1 VSX 2.0.1 ASN.1
Hotfix</span><br>
<a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1%20VSX&version_selected=VSX%202.0.1&os_selected=VSX%202.0.1%20SingleCD&patchlevel_selected=Initial%20Release%20-%20Hotfixes" class="LinkNoUnderlineFootnote">Linux</a>
| <a href="http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?the_product=VPN-1/FireWall-1%20VSX&version_selected=VSX%202.0.1&os_selected=VSX%202.0.1%20SingleCD&patchlevel_selected=Initial%20Release%20-%20Hotfixes" class="LinkNoUnderlineFootnote">SecurePlatform</a></p>
<p>Customers without a valid Software Subscription contract
should contact <a href="../contacts.html" class="LinkUnderline">Check
Point Technical Support</a> for assistance.</p>
</td>
</tr>
</table>
<!-- #EndEditable --></td>
</tr>
<tr>
<td colspan="2" height="20"> </td>
</tr>
</table>
</td>
</tr>
</table>
<table width="680" border="0" cellspacing="0" cellpadding="0" height="20" bgcolor="#405099">
<tr>
<td bgcolor="#FDCD62" width="180"><img src="../../images/home3/clear.gif" width="180" height="1"></td>
<td bgcolor="#FDCD62"><img src="../../images/home3/clear.gif" width="1" height="1"></td>
</tr>
</table>
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed