Vulnerabilities > CVE-2003-0757 - Unspecified vulnerability in Checkpoint Firewall-1 4.0/4.1

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

checkpoint

exploit available

NVD

Published: 2003-10-20

Updated: 2008-09-05

Summary

Check Point FireWall-1 4.0 and 4.1 before SP5 allows remote attackers to obtain the IP addresses of internal interfaces via certain SecuRemote requests to TCP ports 256 or 264, which leaks the IP addresses in a reply packet.

Vulnerable Configurations

Part	Description	Count
Application	Checkpoint Checkpoint Firewall 1 4.0 Checkpoint Firewall 1 4.1	2

Exploit-Db

description	Check Point Firewall-1 4.x SecuRemote Internal Interface Address Information Leakage Vulnerability. CVE-2003-0757. Dos exploit for hardware platform
id	EDB-ID:23087
last seen	2016-02-02
modified	2001-07-17
published	2001-07-17
reporter	Jim Becher
source	https://www.exploit-db.com/download/23087/
title	Check Point Firewall-1 4.x SecuRemote Internal Interface Address Information Leakage Vulnerability

References

http://archives.neohapsis.com/archives/bugtraq/2003-09/0018.html