Vulnerabilities > Checkpoint > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-09-28 | CVE-2004-0699 | Buffer Overflow vulnerability in Check Point VPN-1 ASN.1 Heap-based buffer overflow in ASN.1 decoding library in Check Point VPN-1 products, when Aggressive Mode IKE is implemented, allows remote attackers to execute arbitrary code by initiating an IKE negotiation and then sending an IKE packet with malformed ASN.1 data. | 7.5 |
| 2002-08-12 | CVE-2002-0428 | Unspecified vulnerability in Checkpoint Check Point Vpn, Firewall-1 and Next Generation Check Point FireWall-1 SecuRemote/SecuClient 4.0 and 4.1 allows clients to bypass the "authentication timeout" by modifying the to_expire or expire values in the client's users.C configuration file. | 7.5 |
| 2002-04-01 | CVE-2001-1171 | Local Security vulnerability in Checkpoint Firewall-1 3.0B Check Point Firewall-1 3.0b through 4.0 SP1 follows symlinks and creates a world-writable temporary .cpp file when compiling Policy rules, which could allow local users to gain privileges or modify the firewall policy. | 7.2 |
| 2001-09-21 | CVE-2001-0940 | Unspecified vulnerability in Checkpoint Firewall-1 4.0/4.1 Buffer overflow in the GUI authentication code of Check Point VPN-1/FireWall-1 Management Server 4.0 and 4.1 allows remote attackers to execute arbitrary code via a long user name. | 7.5 |
| 2001-07-12 | CVE-2001-1176 | Unspecified vulnerability in Checkpoint Firewall-1, Provider-1 and Vpn-1 Format string vulnerability in Check Point VPN-1/FireWall-1 4.1 allows a remote authenticated firewall administrator to execute arbitrary code via format strings in the control connection. | 7.5 |
| 2001-07-09 | CVE-2001-1158 | Unspecified vulnerability in Checkpoint Firewall-1 4.1/4.1Build41439 Check Point VPN-1/FireWall-1 4.1 base.def contains a default macro, accept_fw1_rdp, which can allow remote attackers to bypass intended restrictions with forged RDP (internal protocol) headers to UDP port 259 of arbitrary hosts. | 7.5 |
| 2001-02-12 | CVE-2001-0082 | Unspecified vulnerability in Checkpoint Firewall-1 4.1 Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode enabled allows remote attackers to bypass access restrictions via malformed, fragmented packets. | 7.5 |
| 2000-12-11 | CVE-2000-1037 | Unspecified vulnerability in Checkpoint Firewall-1 3.0/4.0/4.1 Check Point Firewall-1 session agent 3.0 through 4.1 generates different error messages for invalid user names versus invalid passwords, which allows remote attackers to determine valid usernames and guess a password via a brute force attack. | 7.5 |
| 2000-11-14 | CVE-2000-0808 | Unspecified vulnerability in Checkpoint Firewall-1 3.0/4.0/4.1 The seed generation mechanism in the inter-module S/Key authentication mechanism in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to bypass authentication via a brute force attack, aka "One-time (s/key) Password Authentication." | 7.5 |
| 2000-11-14 | CVE-2000-0807 | Unspecified vulnerability in Checkpoint Firewall-1 3.0/4.0/4.1 The OPSEC communications authentication mechanism (fwn1) in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to spoof connections, aka the "OPSEC Authentication Vulnerability." | 7.5 |