Description: Robert Mitchell has reported a security issue in CheckPoint VPN-1, which can lead to a DoS (Denial of Service) or disclosure of sensitive information.
The security issue is caused due to an error in the handling IP address collisions and can lead to a DoS or disclosure of sensitive information.
The problem occurs when a remote access client has an IP address, which is also defined in the encryption domain of a gateway that has a site-to-site VPN tunnel to the gateway the client connects to.
Solution: The vendor has issued hotfixes to resolve the issue (see vendor advisory for details).
Provided and/or discovered by: Robert Mitchell
Changelog: 2008-03-19: Added link to US-CERT.
2008-03-25: Added CVE reference.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.