Check Point Firewall-1 4.1 up to NG AI R55 allows remote attackers to obtain potentially sensitive information by sending an Internet Key Exchange (IKE) with a certain Vendor ID payload that causes Firewall-1 to return a response containing version and other information.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Firewall-1 | Checkpoint | 4.0 (including) | 4.0 (including) |
| Firewall-1 | Checkpoint | 4.0-sp1 (including) | 4.0-sp1 (including) |
| Firewall-1 | Checkpoint | 4.0-sp2 (including) | 4.0-sp2 (including) |
| Firewall-1 | Checkpoint | 4.0-sp3 (including) | 4.0-sp3 (including) |
| Firewall-1 | Checkpoint | 4.0-sp4 (including) | 4.0-sp4 (including) |
| Firewall-1 | Checkpoint | 4.0-sp5 (including) | 4.0-sp5 (including) |
| Firewall-1 | Checkpoint | 4.0-sp6 (including) | 4.0-sp6 (including) |
| Firewall-1 | Checkpoint | 4.0-sp7 (including) | 4.0-sp7 (including) |
| Firewall-1 | Checkpoint | 4.0-sp8 (including) | 4.0-sp8 (including) |
| Firewall-1 | Checkpoint | 4.1 (including) | 4.1 (including) |
| Firewall-1 | Checkpoint | 4.1-sp1 (including) | 4.1-sp1 (including) |
| Firewall-1 | Checkpoint | 4.1-sp2 (including) | 4.1-sp2 (including) |
| Firewall-1 | Checkpoint | 4.1-sp3 (including) | 4.1-sp3 (including) |
| Firewall-1 | Checkpoint | 4.1-sp4 (including) | 4.1-sp4 (including) |
| Firewall-1 | Checkpoint | 4.1-sp5 (including) | 4.1-sp5 (including) |
| Firewall-1 | Checkpoint | 4.1-sp5a (including) | 4.1-sp5a (including) |
| Firewall-1 | Checkpoint | 4.1-sp6 (including) | 4.1-sp6 (including) |
| Firewall-1 | Checkpoint | r55 (including) | r55 (including) |