This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Jeff_Gao
Advisor
‎2020-07-01 09:54 AM
Jump to solution

About Treck TCP/IP(Ripple20 Vulnerabilities) IPS Signature

Dear

       If check point have  a plan to publish or update Treck TCP/IP(Ripple20 Vulnerabilities) IPS Signature?

       I update ips signatures up to date,but i can not search follow signatures:

      CVE-2020-11896 CVE-2020-11897 CVE-2020-11898 CVE-2020-11899 CVE-2020-11900 CVE-2020-11901 CVE-2020-11902 CVE-2020-11903 CVE-2020-11904 CVE-2020-11905 CVE-2020-11906 CVE-2020-11907 CVE-2020-11908 CVE-2020-11909 CVE-2020-11910 CVE-2020-11911 CVE-2020-11912 CVE-2020-11913 CVE-2020-11914 .

 

    If check point have a Temporary solution about ripple 20 vulnerabilities,thanks!

1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
‎2020-07-05 01:08 PM
Jump to solution

No IPS signature needed is the related vulnerabilities are handled by our "Packet Sanity" inspection setting in the firewall.
Source: https://research.checkpoint.com/2020/22nd-june-threat-intelligence-bulletin/

View solution in original post

0 Kudos
3 Replies
firewall1-gx
Contributor
‎2020-07-01 07:39 PM
Jump to solution

Hi Jeff,
Fortunately Check Point is not vulnerable to the Ripple20 vulnerabilities as we do not use the Treck IP stack.

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

Regards,
0 Kudos
Jeff_Gao
Advisor
‎2020-07-01 07:45 PM
In response to firewall1-gx
Jump to solution

@ firewall1-gx
Thanks for your reply,I know that checkpoint is not vulnerable to the ripple20 vulnerabilities.I want to know that how check point to prevent this vulnerability.
0 Kudos
PhoneBoy
Admin
Admin
‎2020-07-05 01:08 PM
Jump to solution

No IPS signature needed is the related vulnerabilities are handled by our "Packet Sanity" inspection setting in the firewall.
Source: https://research.checkpoint.com/2020/22nd-june-threat-intelligence-bulletin/
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    Virtual

    Tue 23 Apr 2024 @ 11:00 AM (EDT)

    East US: What's New in R82
    Virtual

    Thu 25 Apr 2024 @ 11:00 AM (SGT)

    APAC: CPX 2024 Recap

    Thu 25 Apr 2024 @ 10:00 AM (CEST)

    The Anatomy of a Cloud Hack by NotSoSecure - EMEA Session

    Thu 25 Apr 2024 @ 06:00 PM (IDT)

    The Anatomy of a Cloud Hack by NotSoSecure - America Session
    Virtual

    Tue 30 Apr 2024 @ 03:00 PM (CDT)

    EMEA: CPX 2024 Recap
    Virtual

    Thu 02 May 2024 @ 11:00 AM (SGT)

    APAC: What's new in R82
    Virtual

    Tue 23 Apr 2024 @ 11:00 AM (EDT)

    East US: What's New in R82
    Virtual

    Thu 25 Apr 2024 @ 11:00 AM (SGT)

    APAC: CPX 2024 Recap
    Virtual

    Tue 30 Apr 2024 @ 03:00 PM (CDT)

    EMEA: CPX 2024 Recap
    Virtual

    Thu 02 May 2024 @ 11:00 AM (SGT)

    APAC: What's new in R82
    Virtual

    Thu 02 May 2024 @ 04:00 PM (CEST)

    CheckMates Live DACH - Keine Kompromisse - Sicheres SD-WAN
    Virtual

    Thu 02 May 2024 @ 05:00 PM (CEST)

    SASE Masters: Deploying Harmony SASE for a 6,000-Strong Workforce in a Single Weekend
    CheckMates Events