CVE-2000-0808

Description

The seed generation mechanism in the inter-module S/Key authentication mechanism in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to bypass authentication via a brute force attack, aka "One-time (s/key) Password Authentication."

Affected products

• checkpoint / firewall-13.0 – 3.0
• checkpoint / firewall-14.0 – 4.0
• checkpoint / firewall-14.1 – 4.1

References

• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/5137
• MISChttp://www.osvdb.org/4421
• MISChttp://www.checkpoint.com/techsupport/alerts/list_vun.html#One-time_Password