https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35375#M7461 <HTML><HEAD></HEAD><BODY><P>sk65269 also gives a command to check the vulnerability of the installed openssh binary...</P></BODY></HTML> Mon, 15 Oct 2018 10:55:46 GMT G_W_Albrecht 2018-10-15T10:55:46Z https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35373#M7459 <HTML><HEAD></HEAD><BODY><P>Hi Team,</P><P></P><P>We are getting the below vulnerability for the checkpoint. &nbsp;</P><P></P><P>Name : OpenSSH X11 Cookie Local Authentication Bypass Vulnerability (openssh-x11-cookie-auth-bypass)<BR />&nbsp;&nbsp; &nbsp;<BR />Description :</P><P></P><P>ssh in OpenSSH before 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows attackers to violate intended policy and gain privileges by causing an X client to be treated as trusted.</P><P></P><P><BR />OpenBSD OpenSSH &lt; 4.7<BR /><SPAN>Download and apply the upgrade from: </SPAN><A class="jive-link-external-small" href="ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH" rel="nofollow">ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH</A><BR />While you can always build OpenSSH from source, many platforms and distributions provide pre-built binary packages for OpenSSH.<BR />These pre-built packages are usually customized and optimized for a particular distribution, therefore we recommend that you use the packages if they are available for your operating system.</P><P></P><P>-----------------------------------------------------------------</P><P></P><P>We have the take installed is take_286.</P><P></P><P>From the above description, I can find the CVE associated for the vulnerability is #CVE-2007-4752.</P><P></P><P>From the #sk65269, I can see the comments given is Not vulnerable. So it means checkpoint devices are not vulnerable for this vulnerbaility ??</P><P></P><P>Regards,</P><P>Vengatesh SR</P></BODY></HTML> Mon, 15 Oct 2018 10:32:54 GMT https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35373#M7459 Vengatesh_SR 2018-10-15T10:32:54Z https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35374#M7460 <HTML><HEAD></HEAD><BODY><P>Here you can find your reply , have fun</P><P><A class="link-titled" href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk65269&amp;partition=General&amp;product=All%22" title="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk65269&amp;partition=General&amp;product=All%22">Status of OpenSSH CVEs</A>&nbsp;</P></BODY></HTML> Mon, 15 Oct 2018 10:55:32 GMT https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35374#M7460 Marco_Valenti 2018-10-15T10:55:32Z https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35375#M7461 <HTML><HEAD></HEAD><BODY><P>sk65269 also gives a command to check the vulnerability of the installed openssh binary...</P></BODY></HTML> Mon, 15 Oct 2018 10:55:46 GMT https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35375#M7461 G_W_Albrecht 2018-10-15T10:55:46Z https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35376#M7462 <HTML><HEAD></HEAD><BODY><P>The SK is pretty clear--not vulnerable.</P><P>In general, this can be because:</P><OL><LI>Our configuration does not include the relevant code needed to exploit the vulnerability</LI><LI>We've patched the relevant defect</LI></OL></BODY></HTML> Mon, 15 Oct 2018 11:26:29 GMT https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35376#M7462 PhoneBoy 2018-10-15T11:26:29Z https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35377#M7463 <HTML><HEAD></HEAD><BODY><P>So it means our devices are not vulnerable right ?</P></BODY></HTML> Mon, 15 Oct 2018 11:43:22 GMT https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35377#M7463 Vengatesh_SR 2018-10-15T11:43:22Z https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35378#M7464 <HTML><HEAD></HEAD><BODY><P>Correct, not vulnerable.</P></BODY></HTML> Mon, 15 Oct 2018 11:46:42 GMT https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35378#M7464 PhoneBoy 2018-10-15T11:46:42Z https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35379#M7465 <HTML><HEAD></HEAD><BODY><P>Wow Great!!! Thanks </P></BODY></HTML> Mon, 15 Oct 2018 12:27:03 GMT https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35379#M7465 Vengatesh_SR 2018-10-15T12:27:03Z https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35380#M7466 <HTML><HEAD></HEAD><BODY><P>Great</P></BODY></HTML> Mon, 15 Oct 2018 12:53:05 GMT https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/35380#M7466 Gaurav_Pandya 2018-10-15T12:53:05Z https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/65107#M13306 <P>Do we have a way to prove that we're not vulnerable?&nbsp; &nbsp;We are using a Rapid7 scanner, and it is seeing the vulnerability and we need to show evidence that the vulnerability does not exist rather than just an sk that says "not vulnerable".&nbsp; &nbsp;</P> Wed, 16 Oct 2019 12:58:10 GMT https://community.checkpoint.com/t5/General-Topics/Vulerability-CVE-2007-4752/m-p/65107#M13306 tbindenagel 2019-10-16T12:58:10Z