CVE-2004-0699

high

Check Point

CVSS v3 Base Score

7.5

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS Score

19.8%

Exploitation probability in 30 days

Top 5% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Confidentiality

Integrity

Availability

Published: September 28, 2004 (7898 days ago)

Last Modified: April 16, 2026

Vendor: Check Point

Source: NVD

Description

Heap-based buffer overflow in ASN.1 decoding library in Check Point VPN-1 products, when Aggressive Mode IKE is implemented, allows remote attackers to execute arbitrary code by initiating an IKE negotiation and then sending an IKE packet with malformed ASN.1 data.

CWE

NVD-CWE-Other

Affected Products

checkpoint firewall-1checkpoint vpn-1

References

🔗 secunia.com 🔗 securitytracker.com 🔗 www.checkpoint.com 🔗 www.ciac.org 🔗 www.kb.cert.org

CVE-2004-0699

Vulnerability Report

Description

CWE

Affected Products

References