Support Center > Search Results > SecureKnowledge Details
Check Point response to CVE-2009-1385 Technical Level
Symptoms
  • Integer underflow in the e1000 driver in the Linux kernel before 2.6.30-rc8 allows remote attackers to cause a denial of service (panic) via a crafted frame size. Refer to CVE-2009-1385 for more details.
    To exploit this vulnerability attack should be launched from the network segment of the Check Point gateway.
    Attack is not possible through a router.
    Attack could not be reproduced.

    VPN-1 SecurePlatform R70 and VPN-1 Power/UTM NGX R65 HFA_50 are not vulnerable.
    This issue is not relevant to IPSO platfoms (except for IPSO-LX).
    This issue is relevant to all other SecurePlatform and IPS-LX versions.
Solution
For SecurePlatform based products Check Point Support offers a Hotfix. To contact Support either call one of the Worldwide Technical Assistance Centers at:

Americas: +1 (972) 444 6600 / +1 (888) 361 5030 / +1 (613) 271 7950 or International: +972-3-6115100 (see the full list of contact phone numbers), or submit a Service Request through http://www.checkpoint.com/sr.


Hotfixes for IPSO-LX platforms are available below:

Give us Feedback
Please rate this document
[1=Worst,5=Best]
Comment