CVE: CVE-2005-2889 - CVE-Search

CVE Details for CVE: CVE-2005-2889

Summary

Check Point NGX R60 does not properly verify packets against the predefined service group "CIFS" rule, which allows remote attackers to bypass intended restrictions.

Timestamps
Last major update	18-10-2016 - 03:31
Published	14-09-2005 - 20:03
Last modified	18-10-2016 - 03:31

References

http://www.kb.cert.org/vuls/id/508209
http://marc.info/?l=bugtraq&m=112611529724821&w=2

Vulnerable Configurations

cpe:2.3:a:checkpoint:connectra_ngx:r60:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:connectra_ngx:r60:*:*:*:*:*:*:*

CAPEC

Click the CAPEC title to display a description

CWE

NVD-CWE-Other

CVSS

Base

7.5

Impact

6.4

Exploitability

10.0

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

CVSS3

None

VIA4 references

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

refmap via4

bugtraq	20050907 Rule bypassing in CheckPoint NGX R60
cert-vn	VU#508209