GCVE - cpe:2.3:a:checkpoint:firewall-1:2.0:*:gx:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:checkpoint:firewall-1:2.0:*:gx:*:*:*:*:*

part: a version: 2.0 update: *

Vendor	Checkpoint (`963cc759-0773-5380-992a-923d56af82ce`)
Product	Firewall 1 (`cc24dfe3-b9bd-5add-92ee-0f590378cfd4`)
Edition	gx
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2004-0469`	vulnerable	2026-06-03 14:26:35.618067	Details available Buffer overflow in the ISAKMP functionality for Check Point VPN-1 and FireWall-1 NG products, before VPN-1/FireWall-1 R55 HFA-03, R54 HFA-410 and NG FP3 HFA-325, or VPN-1 SecuRemote/SecureClient R56, may allow remote attackers to execute arbitrary code during VPN tunnel negotiation. Published: 2004-05-14T04:00:00.000Z Updated: 2024-08-08T00:17:14.985Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/16060 http://www.checkpoint.com/techsupport/alerts/ike_vpn.html http://www.securityfocus.com/bid/10273	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0112`	vulnerable	2026-06-03 14:26:34.299589	Details available The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read. Published: 2004-03-18T05:00:00.000Z Updated: 2024-08-08T00:10:03.359Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/9899 http://marc.info/?l=bugtraq&m=108403806509920&w=2 http://www.redhat.com/support/errata/RHSA-2004-121.html http://www.mandriva.com/security/advisories?name=MDKSA-2004:023 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000834	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0081`	vulnerable	2026-06-03 14:26:34.203873	Details available OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool. Published: 2004-03-18T05:00:00.000Z Updated: 2024-08-08T00:01:23.650Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/9899 http://www.linuxsecurity.com/advisories/engarde_advisory-4135.html http://marc.info/?l=bugtraq&m=107955049331965&w=2 http://www.redhat.com/support/errata/RHSA-2004-121.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000834	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0079`	vulnerable	2026-06-03 14:26:34.091837	Details available The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. Published: 2004-03-18T05:00:00.000Z Updated: 2025-01-16T17:33:22.869Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/9899 http://www.redhat.com/archives/fedora-announce-list/2005-October/msg00087.html http://www.linuxsecurity.com/advisories/engarde_advisory-4135.html http://marc.info/?l=bugtraq&m=108403806509920&w=2 http://www.redhat.com/support/errata/RHSA-2004-121.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.