Sign-up

ID

VAR-200904-0305


CVE

CVE-2009-1227


TITLE

of Check Point Software Technologies  firewall-1 pki web service  Buffer error vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2009-006664

DESCRIPTION

NOTE: this issue has been disputed by the vendor. Buffer overflow in the PKI Web Service in Check Point Firewall-1 PKI Web Service allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) Authorization or (2) Referer HTTP header to TCP port 18624. NOTE: the vendor has disputed this issue, stating "Check Point Security Alert Team has analyzed this report. We've tried to reproduce the attack on all VPN-1 versions from NG FP2 and above with and without HFAs. The issue was not reproduced. We have conducted a thorough analysis of the relevant code and verified that we are secure against this attack. We consider this attack to pose no risk to Check Point customers." In addition, the original researcher, whose reliability is unknown as of 20090407, also states that the issue "was discovered during a pen-test where the client would not allow further analysis. Check Point FireWall-1 PKI web service is prone to multiple remote buffer-overflow vulnerabilities because the application fails to perform adequate boundary checks on user-supplied data. An attacker can exploit these issues to execute arbitrary code with the privileges of the user running the affected application. Failed exploit attempts will result in a denial-of-service condition. NOTE: This BID is being retired because the application is not vulnerable as described. Check Point Firewall-1 is a high-performance firewall

Trust: 1.98

sources: NVD: CVE-2009-1227 // JVNDB: JVNDB-2009-006664 // BID: 34286 // VULHUB: VHN-38673

AFFECTED PRODUCTS

vendor:checkpointmodel:firewall-1 pki web servicescope:eqversion: -

Trust: 1.6

vendor:チェック ポイント ソフトウェア テクノロジーズmodel:firewall-1 pki web servicescope:eqversion: -

Trust: 0.8

vendor:チェック ポイント ソフトウェア テクノロジーズmodel:firewall-1 pki web servicescope: - version: -

Trust: 0.8

vendor:checkmodel:point software firewall-1scope: - version: -

Trust: 0.3

sources: BID: 34286 // JVNDB: JVNDB-2009-006664 // CNNVD: CNNVD-200904-039 // NVD: CVE-2009-1227

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2009-1227
value: HIGH

Trust: 1.0

NVD: CVE-2009-1227
value: HIGH

Trust: 0.8

CNNVD: CNNVD-200904-039
value: CRITICAL

Trust: 0.6

VULHUB: VHN-38673
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2009-1227
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-38673
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-38673 // JVNDB: JVNDB-2009-006664 // CNNVD: CNNVD-200904-039 // NVD: CVE-2009-1227

PROBLEMTYPE DATA

problemtype:CWE-119

Trust: 1.1

problemtype:Buffer error (CWE-119) [NVD evaluation ]

Trust: 0.8

sources: VULHUB: VHN-38673 // JVNDB: JVNDB-2009-006664 // NVD: CVE-2009-1227

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200904-039

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-200904-039

EXPLOIT AVAILABILITY

sources:
            
            
            VULHUB: VHN-38673

EXTERNAL IDS
db:NVDid:CVE-2009-1227
Trust: 3.6
db:BIDid:34286
Trust: 2.8
db:EXPLOIT-DBid:8313
Trust: 2.5
db:SECTRACKid:1021948
Trust: 2.5
db:JVNDBid:JVNDB-2009-006664
Trust: 0.8
db:BUGTRAQid:20090330 CHECK POINT FIREWALL-1 PKI WEB SERVICE HTTP HEADER REMOTE OVERFLOW
Trust: 0.6
db:MILW0RMid:8313
Trust: 0.6
db:FULLDISCid:20090330 CHECK POINT FIREWALL-1 PKI WEB SERVICE HTTP HEADER REMOTE OVERFLOW
Trust: 0.6
db:CNNVDid:CNNVD-200904-039
Trust: 0.6
db:VULHUBid:VHN-38673
Trust: 0.1
sources:
            
            
            VULHUB: VHN-38673 // 
            
            
            
            BID: 34286 // 
            
            
            
            JVNDB: JVNDB-2009-006664 // 
            
            
            
            CNNVD: CNNVD-200904-039 // 
            
            
            
            NVD: CVE-2009-1227

REFERENCES
url:http://www.securityfocus.com/bid/34286
Trust: 2.5
url:http://archives.neohapsis.com/archives/fulldisclosure/2009-03/0463.html
Trust: 2.5
url:http://www.securitytracker.com/id?1021948
Trust: 2.5
url:http://www.securityfocus.com/archive/1/502256/100/0/threaded
Trust: 1.9
url:https://www.exploit-db.com/exploits/8313
Trust: 1.9
url:https://nvd.nist.gov/vuln/detail/cve-2009-1227
Trust: 0.8
url:http://www.securityfocus.com/archive/1/archive/1/502256/100/0/threaded
Trust: 0.6
url:http://www.milw0rm.com/exploits/8313
Trust: 0.6
url:https://supportcenter.checkpoint.com/supportcenter/portal?eventsubmit_dogoviewsolutiondetails=&solutionid=sk37808
Trust: 0.3
url:http://www.checkpoint.com
Trust: 0.3
url:/archive/1/502256
Trust: 0.3
sources:
            
            
            VULHUB: VHN-38673 // 
            
            
            
            BID: 34286 // 
            
            
            
            JVNDB: JVNDB-2009-006664 // 
            
            
            
            CNNVD: CNNVD-200904-039 // 
            
            
            
            NVD: CVE-2009-1227

CREDITS
BugsNotHugs   bugsnothugs@gmail.com
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-200904-039

SOURCES
db:VULHUBid:VHN-38673
db:BIDid:34286
db:JVNDBid:JVNDB-2009-006664
db:CNNVDid:CNNVD-200904-039
db:NVDid:CVE-2009-1227

LAST UPDATE DATE
2025-04-10T23:07:03.918000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-38673date:2018-10-10T00:00:00
db:BIDid:34286date:2015-05-12T19:48:00
db:JVNDBid:JVNDB-2009-006664date:2024-07-18T01:41:00
db:CNNVDid:CNNVD-200904-039date:2009-04-08T00:00:00
db:NVDid:CVE-2009-1227date:2025-04-09T00:30:58.490

SOURCES RELEASE DATE
db:VULHUBid:VHN-38673date:2009-04-02T00:00:00
db:BIDid:34286date:2009-03-30T00:00:00
db:JVNDBid:JVNDB-2009-006664date:2024-07-18T00:00:00
db:CNNVDid:CNNVD-200904-039date:2009-03-30T00:00:00
db:NVDid:CVE-2009-1227date:2009-04-02T15:30:00.453