CVE-2005-4093

medium Check Point
CVSS v3 Base Score
6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P
EPSS Score
4.3%
Exploitation probability in 30 days
Top 11% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Published: December 8, 2005 (7461 days ago)
Last Modified: April 16, 2026
Vendor: Check Point
Source: NVD

Description

Check Point VPN-1 SecureClient NG with Application Intelligence R56, NG FP1, 4.0, and 4.1 allows remote attackers to bypass security policies by modifying the local copy of the local.scv policy file after it has been downloaded from the VPN Endpoint.

CWE

CWE-264

Affected Products

checkpoint secureclient ngcheckpoint vpn-1 secureclient

References

🔗 lists.grok.org.uk 🔗 secunia.com 🔗 secunia.com 🔗 securitytracker.com 🔗 www.mail-archive.com