Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1158

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-1158
Last Modified 05 Sep 2008 04:25:50
Published 09 Jul 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1158

Summary

Check Point VPN-1/FireWall-1 4.1 base.def contains a default macro, accept_fw1_rdp, which can allow remote attackers to bypass intended restrictions with forged RDP (internal protocol) headers to UDP port 259 of arbitrary hosts.

Vulnerable Systems

Application

  • Checkpoint Firewall-1 4.1

  • Checkpoint Firewall-1 4.1 Build 41439


References

CERT-VN - VU#310295

CERT - CA-2001-17

XF - fw1-rdp-bypass(6815)

BID - 2952

BUGTRAQ - 20010709 Check Point FireWall-1 RDP Bypass Vulnerability

OSVDB - 1884

CHECKPOINT - 20010712 RDP Bypass workaround for VPN-1/FireWall 4.1 SPx

BUGTRAQ - 20010709 Check Point response to RDP Bypass

CIAC - L-109


Last Updated: 27 May 2016 10:36:32