NVD

Id
5580  
Name
CVE-2008-5849  
Description
Check Point VPN-1 R55, R65, and other versions, when Port Address Translation (PAT) is used, allows remote attackers to discover intranet IP addresses via a packet with a small TTL, which triggers an ICMP_TIMXCEED_INTRANS (aka ICMP time exceeded in-transit) response containing an encapsulated IP packet with an intranet address, as demonstrated by a TCP packet to the firewall management server on port 18264.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-03  
Published
2009-01-06  
Modified Date
2009-08-19  
Seq
2008-5849  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
34673 5580 CVE-2008-5849 http://www.portcullis-security.com/293.php  View
34674 5580 CVE-2008-5849 32306  View
34675 5580 CVE-2008-5849 ADV-2008-3229  View
34676 5580 CVE-2008-5849 vpn1-pat-information-disclosure(46645)  View
34677 5580 CVE-2008-5849 https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk36321  View
34678 5580 CVE-2008-5849 https://svn.wald.intevation.org/svn/openvas/trunk/openvas-plugins/scripts/checkpoint-vpn1-pat-information-disclosure.nasl  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
46855 JVNDB-2008-002165 Check Point VPN-1 におけるイントラネット IP アドレスが漏えいする脆弱性 Check Point VPN-1 には、Port Address Translation (PAT) を使用している場合に、小さい TTL を持つパケットの処理に不備があるため、イントラネット IP アドレスが漏えいする脆弱性が存在します。 CVE-2008-5849 35962 CVE-2008-5849 5580 5 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002165.html 2008-12-28 2009-01-13 View