Check Point Connectra security check can be bypassed
Check Point's Connectra, an SSL-VPN Gateway for businesses, checks a client's security status before establishing a secure connection. By manipulating cookies, an attacker could bypass this check and connect an infected computer to the company network. Once connected such a computer could steal files or bring further computers under its control. The manufacturer has released updated software which fixes the vulnerability for registered users.
- Check Point Connectra End Point security bypass, security advisory on Full Disclosure
- Download updated software for Check Point's Connectra
(ehe)