Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1176

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-1176
Last Modified 05 Sep 2008 04:25:52
Published 12 Jul 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1176

Summary

Format string vulnerability in Check Point VPN-1/FireWall-1 4.1 allows a remote authenticated firewall administrator to execute arbitrary code via format strings in the control connection.

Vulnerable Systems

Application

  • Checkpoint Firewall-1 4.1

  • Checkpoint Provider-1 4.1

  • Checkpoint Vpn-1 4.1


References

XF - fw1-management-format-string(6849)

BID - 3021

BUGTRAQ - 20010712 VPN-1/FireWall-1 Format Strings Vulnerability

CONFIRM - http://www.checkpoint.com/techsupport/alerts/format_strings.html

OSVDB - 1901


Last Updated: 27 May 2016 10:36:34