Vulnerabilities > Checkpoint > Firewall 1 > 4.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2001-07-18 | CVE-2001-1303 | Unspecified vulnerability in Checkpoint Firewall-1 4.0/4.1 The default configuration of SecuRemote for Check Point Firewall-1 allows remote attackers to obtain sensitive configuration information for the protected network without authentication. | 5.0 |
2001-07-12 | CVE-2001-1176 | Unspecified vulnerability in Checkpoint Firewall-1, Provider-1 and Vpn-1 Format string vulnerability in Check Point VPN-1/FireWall-1 4.1 allows a remote authenticated firewall administrator to execute arbitrary code via format strings in the control connection. | 7.5 |
2001-07-09 | CVE-2001-1158 | Unspecified vulnerability in Checkpoint Firewall-1 4.1/4.1Build41439 Check Point VPN-1/FireWall-1 4.1 base.def contains a default macro, accept_fw1_rdp, which can allow remote attackers to bypass intended restrictions with forged RDP (internal protocol) headers to UDP port 259 of arbitrary hosts. | 7.5 |
2001-03-26 | CVE-2001-0182 | Unspecified vulnerability in Checkpoint Firewall-1 4.1 FireWall-1 4.1 with a limited-IP license allows remote attackers to cause a denial of service by sending a large number of spoofed IP packets with various source addresses to the inside interface, which floods the console with warning messages and consumes CPU resources. | 5.0 |
2001-02-12 | CVE-2001-0082 | Unspecified vulnerability in Checkpoint Firewall-1 4.1 Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode enabled allows remote attackers to bypass access restrictions via malformed, fragmented packets. | 7.5 |
2000-12-11 | CVE-2000-1037 | Unspecified vulnerability in Checkpoint Firewall-1 3.0/4.0/4.1 Check Point Firewall-1 session agent 3.0 through 4.1 generates different error messages for invalid user names versus invalid passwords, which allows remote attackers to determine valid usernames and guess a password via a brute force attack. | 7.5 |
2000-11-14 | CVE-2000-0813 | Unspecified vulnerability in Checkpoint Firewall-1 3.0/4.0/4.1 Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to redirect FTP connections to other servers ("FTP Bounce") via invalid FTP commands that are processed improperly by FireWall-1, aka "FTP Connection Enforcement Bypass." | 5.0 |
2000-11-14 | CVE-2000-0809 | Unspecified vulnerability in Checkpoint Firewall-1 3.0/4.0/4.1 Buffer overflow in Getkey in the protocol checker in the inter-module communication mechanism in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to cause a denial of service. | 5.0 |
2000-11-14 | CVE-2000-0808 | Unspecified vulnerability in Checkpoint Firewall-1 3.0/4.0/4.1 The seed generation mechanism in the inter-module S/Key authentication mechanism in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to bypass authentication via a brute force attack, aka "One-time (s/key) Password Authentication." | 7.5 |
2000-11-14 | CVE-2000-0807 | Unspecified vulnerability in Checkpoint Firewall-1 3.0/4.0/4.1 The OPSEC communications authentication mechanism (fwn1) in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to spoof connections, aka the "OPSEC Authentication Vulnerability." | 7.5 |