https://www.securityfocus.com/bid/89555
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200212-593

InternetKeyExchange(IKE)协议设计在使用用于分享秘密认证的Aggressive模式时不能加密协商时的发起人或应答者身份。远程攻击者可以通过（1）在提供密码前监测响应或（2）嗅探判断有效用户名，该漏洞与防火墙-1SecuRemote最初报告相同。

Checkpoint Vpn-1 Firewall-1 4.0

来源:US-CERTVulnerabilityNote:VU#886601
名称:VU#886601
链接:http://www.kb.cert.org/vuls/id/886601
来源:XF
名称:fw1-ike-username-enumeration(10034)
链接:http://xforce.iss.net/xforce/xfdb/10034
来源:BID
名称:5607
链接:http://www.securityfocus.com/bid/5607
来源:BUGTRAQ
名称:20020903SecuRemoteusernamescanbeguessedorsniffedusingIKEexchange
链接:http://www.securityfocus.com/archive/1/290202
来源:www.securiteam.com
链接:http://www.securiteam.com/securitynews/5TP040U8AW.html
来源:www.nta-monitor.com
链接:http://www.nta-monitor.com/news/checkpoint.htm
来源:www.checkpoint.com
链接:http://www.checkpoint.com/techsupport/alerts/ike.html
来源:BUGTRAQ
名称:20020911RE:SecuRemoteusernamescanbeguessedorsniffedusingIKE
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=103176164729351&w;=2
来源:BUGTRAQ
名称:20020911RE:SecuRemoteusernamescanbeguessedorsniffedusingIKE
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=103176164729351&w;=2
来源:BUGTRAQ
名称:20020905RE:SecuRemoteusernamescanbeguessedorsniffedusingIKEexchange
链接:http://marc.theaimsgroup.com/?l=bugtraq&