Vulnerabilities > Checkpoint > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2000-11-14 | CVE-2000-0805 | Unspecified vulnerability in Checkpoint Firewall-1 3.0/4.0/4.1 Check Point VPN-1/FireWall-1 4.1 and earlier improperly retransmits encapsulated FWS packets, even if they do not come from a valid FWZ client, aka "Retransmission of Encapsulated Packets." | 7.5 |
2000-11-14 | CVE-2000-0804 | Unspecified vulnerability in Checkpoint Firewall-1 3.0/4.0/4.1 Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to bypass the directionality check via fragmented TCP connection requests or reopening closed TCP connection requests, aka "One-way Connection Enforcement Bypass." | 7.5 |
2000-10-20 | CVE-2000-0779 | Unspecified vulnerability in Checkpoint Firewall-1 3.0/4.0/4.1 Checkpoint Firewall-1 with the RSH/REXEC setting enabled allows remote attackers to bypass access restrictions and connect to a RSH/REXEC client via malformed connection requests. | 7.5 |
2000-02-12 | CVE-2000-0150 | Check Point Firewall-1 allows remote attackers to bypass port access restrictions on an FTP server by forcing it to send malicious packets that Firewall-1 misinterprets as a valid 227 response to a client's PASV attempt. | 7.5 |
2000-01-29 | CVE-2000-0116 | Unspecified vulnerability in Checkpoint Firewall-1 3.0 Firewall-1 does not properly filter script tags, which allows remote attackers to bypass the "Strip Script Tags" restriction by including an extra < in front of the SCRIPT tag. | 7.5 |
1998-05-11 | CVE-1999-1204 | Unspecified vulnerability in Checkpoint Firewall-1 Check Point Firewall-1 does not properly handle certain restricted keywords (e.g., Mail, auth, time) in user-defined objects, which could produce a rule with a default "ANY" address and result in access to more systems than intended by the administrator. | 7.5 |