Vulnerabilities > CVE-2006-3885 - Directory Traversal vulnerability in Checkpoint Firewall-1 R55W

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

checkpoint

NVD

Published: 2006-07-27

Updated: 2018-10-17

Summary

Directory traversal vulnerability in Check Point Firewall-1 R55W before HFA03 allows remote attackers to read arbitrary files via an encoded .. (dot dot) in the URL on TCP port 18264.

Vulnerable Configurations

Part	Description	Count
Application	Checkpoint Checkpoint Firewall 1 R55W	3

References

http://secunia.com/advisories/21200
http://securityreason.com/securityalert/1290
http://securitytracker.com/id?1016563
http://www.sec-tec.co.uk/vulnerability/r55w_directory_traversal.html
http://www.securityfocus.com/archive/1/440990/100/0/threaded
http://www.securityfocus.com/archive/1/441495/100/0/threaded
http://www.securityfocus.com/bid/19136
http://www.vupen.com/english/advisories/2006/2965
https://exchange.xforce.ibmcloud.com/vulnerabilities/27937