On Mon, 24 Jul 2006, Sec-Tec Lists wrote:
> Check Point Firewall-1 R55W contains a hard coded web server, which runs on
> TCP port 18264. This server is there to deal with PKI requirements for Check
> Point's VPN functionality.
>
> During a routine penetration test of a client, Sec-Tec discovered
Hi,
The weblink given in the advisory is down.
http://www.sec-tec.co.uk/vulnerability/r55w_directory_traversal.html
Could the author provide more information?
Overview
Check Point Firewall-1 R55W contains a hard coded web server, which runs on
TCP port 18264. This server is there to deal with PKI requirements for Check
Point's VPN functionality.
During a routine penetration test of a client, Sec-Tec discovered a
directory traversal vulnerability that a