CVE-2008-5849
Last modified
CVE-2008-5849 is a vulnerability of currently unknown severity. Check Point VPN-1 R55, R65, and other versions, when Port Address Translation (PAT) is used, allows remote attackers to discover intranet IP addresses via a packet with a small TTL, which triggers an ICMP_TIMXCEED_INTRANS (aka ICMP time exceeded in-transit) response containing an encapsulated IP packet with an intranet address, as demonstrated by a TCP packet to the firewall management server on port 18264.. EPSS estimates a 1.62% chance of exploitation in the next 30 days.
Description
Check Point VPN-1 R55, R65, and other versions, when Port Address Translation (PAT) is used, allows remote attackers to discover intranet IP addresses via a packet with a small TTL, which triggers an ICMP_TIMXCEED_INTRANS (aka ICMP time exceeded in-transit) response containing an encapsulated IP packet with an intranet address, as demonstrated by a TCP packet to the firewall management server on port 18264.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Checkpoint | Vpn-1 | r55 |
| Checkpoint | Vpn-1 | r65 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2008-5849?
How severe is CVE-2008-5849?
How do I fix CVE-2008-5849?
Are you affected by CVE-2008-5849?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST