Vigil@nce - Check Point Anti-Bot/Virus: malicious urls not blocked
August 2016 by Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can send documents containing malicious urls, which
are not detected by Check Point Anti-Bot/Virus.
Impacted products: GAiA, CheckPoint Security Appliance.
Severity: 2/4.
Creation date: 01/06/2016.
DESCRIPTION OF THE VULNERABILITY
The Check Point Anti-Bot / Anti-Virus product offers a service to
detect malicious urls.
However, after installing Take 143 of R77.30 Jumbo Hotfix
Accumulator, this service stops.
An attacker can therefore send documents containing malicious
urls, which are not detected by Check Point Anti-Bot/Virus.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
https://vigilance.fr/vulnerability/Check-Point-Anti-Bot-Virus-malicious-urls-not-blocked-19746