CVE-2002-1623 - design 的 internet key exchange (ike) protocol, 当使用 aggressive mode 对于 shared secret authentication, 不 encrypt initiator 或 responder identities during negotiation, which allow 远程 attackers 到 determine valid usernames 通过 (1) monitoring responses before 密码 supplied 或 (2) sniffing, 作为 originally reported 对于 firewall-1 securemote

design 的 internet key exchange (ike) protocol, 当使用 aggressive mode 对于 shared secret authentication, 不 encrypt initiator 或 responder identities during negotiation, which allow 远程 attackers 到 determine valid usernames 通过 (1) monitoring responses before 密码 supplied 或 (2) sniffing, 作为 originally reported 对于 firewall-1 securemote.

漏洞信息

漏洞编号：CVE-2002-1623
严重程度：medium
CVSS评分：5
影响产品：checkpoint:vpn-1_firewall-1

本网站需要启用 JavaScript 才能正常访问。请在浏览器设置中启用 JavaScript 后刷新页面。