Check Point VPN-1 SecuRemote Flaw

From: Kratter, Dave (daveat_private)
Date: Tue Oct 23 2001 - 14:07:05 PDT

Next message: Scott Dier: "Re: Flaws in recent Linux kernels"

Previous message: Julian Hall: "Re: Javascript in IE may spoof the whole screen"
Next in thread: Gordon, Paul: "RE: Check Point VPN-1 SecuRemote Flaw"
Reply: Gordon, Paul: "RE: Check Point VPN-1 SecuRemote Flaw"
Reply: Andy Fiddaman: "RE: Check Point VPN-1 SecuRemote Flaw"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Summary:
	SecuRemote will show whether a username is recognized during failed
login attempts

Versions Tested:
	4.1 SP4 (4185) VPN+Strong for Windows 2000
	4.1 SP4 (4185) VPN+Strong for Windows NT

Description:
	During an authentication attempt in the VPN-1 SecuRemote
Authentication dialog box, a failed login due to an incorrect username or
password will result in different responses, depending on the nature of the
failure. If the username is valid and the password is incorrect, SecuRemote
will return a dialog box with the message "Access denied by FireWall-1
authentication". However, if the username is invalid, SecuRemote will return
a dialog box with the message "User <unknown_user> not found". While this is
not a security hole per se, it does allow someone to determine valid
firewall usernames (given enough patience).

Workaround:
	Unknown

Vendor Status:
	Check Point was notified on October 16, 2001



David B. Kratter
Mimeo.com, Inc.
Quality Assurance Technical Engineer

Mimeo.com. Click.Print.Bind.Deliver.sm

Next message: Scott Dier: "Re: Flaws in recent Linux kernels"
Previous message: Julian Hall: "Re: Javascript in IE may spoof the whole screen"
Next in thread: Gordon, Paul: "RE: Check Point VPN-1 SecuRemote Flaw"
Reply: Gordon, Paul: "RE: Check Point VPN-1 SecuRemote Flaw"
Reply: Andy Fiddaman: "RE: Check Point VPN-1 SecuRemote Flaw"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Oct 23 2001 - 14:20:05 PDT