=====================================================================
                                 CERT-Renater

                      Note d'Information No. 2004/VULN210
_____________________________________________________________________

DATE                      : 05/05/2004

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Systems running VPN-1/FireWall-1.
                            
======================================================================


http://www.checkpoint.com/techsupport/alerts/ike_vpn.html

ISAKMP Vulnerability
4 May 2004

An ISAKMP vulnerability has been discovered affecting Check Point VPN-1
products during negotiations of a VPN tunnel which may cause a buffer
overrun, potentially compromising the gateway. In certain circumstances,
this compromise could allow further network compromise.

Check Point Software customers who do not use Remote Access VPNs or
gateway-to-gateway VPNs, or who have upgraded to current product versions
(VPN-1/FireWall-1 R55 HFA-03, R54 HFA-410 and NG FP3 HFA-325, or VPN-1
SecuRemote/SecureClient R56) are NOT affected by this vulnerability.

Check Point knows of no organizations that have had systems affected
by this issue. However, in order to protect VPN-1 Gateways, Check Point
recommends that customers install an update on all enforcement modules.

The most recent Hotfix Accumulators (HFAs) address this issue. Software
Subscription customers can download the HFAs and individual fixes for
VPN-1/FireWall-1 VSX, FireWall-1 GX and VPN-1 SecuRemote/SecureClient
using the links listed below.

VPN-1/FireWall-1 NG with Application Intelligence R55 Hotfix HFA-03

      R55 HFA-03 for IPSO
      R55 HFA-03 for Linux
      R55 HFA-03 for SecurePlatform
      R55 HFA-03 for Solaris
      R55 HFA-03 for Windows

VPN-1/FireWall-1 NG with Application Intelligence R54 HFA-410

      R54 HFA-410 for IPSO
      R54 HFA-410 for Linux
      R54 HFA-410 for SecurePlatform
      R54 HFA-410 for Solaris
      R54 HFA-410 for Windows

VPN-1/FireWall-1 Next Generation FP3 HFA-325

      FP3 HFA-325 for IPSO
      FP3 HFA-325 for Linux
      FP3 HFA-325 for SecurePlatform
      FP3 HFA-325 for Solaris
      FP3 HFA-325 for Windows

VPN-1/FireWall-1 VSX NG with Application Intelligence Hotfix

      VSX NG with Application Intelligence
      HF for
      SecurePlatform

VPN-1/FireWall-1 VSX 2.0.1 Hotfix

      VSX 2.0.1 HF for SecurePlatform

FireWall-1 GX 2.0 Hotfix

      GX 2.0 HF for IPSO
      GX 2.0 HF for Linux
      GX 2.0 HF for SecurePlatform
      GX 2.0 HF for Solaris

VPN-1 SecuRemote/SecureClient NG with Application Intelligence R56

      Free Public Downloads

Customers without a valid Software Subscription contract, or those
requesting a fix on VPN-1 4.1 SP6 should contact Check Point Technical
Support for assistance.

======================================================================

        =========================================================
        Les serveurs de référence du CERT-Renater
        http://www.urec.fr/securite
        http://www.cru.fr/securite
        http://www.renater.fr 
	=========================================================
	+ CERT-RENATER		| tel : 01-53-94-20-44		+
	+ 151 bd de l'Hopital	| fax : 01-53-94-20-41		+
	+ 75013 Paris		| email: certsvp@renater.fr	+
	=========================================================