Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1171

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2001-1171
Last Modified 05 Sep 2008 04:25:51
Published 01 Apr 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-1171

Summary

Check Point Firewall-1 3.0b through 4.0 SP1 follows symlinks and creates a world-writable temporary .cpp file when compiling Policy rules, which could allow local users to gain privileges or modify the firewall policy.

Vulnerable Systems

Application

  • Checkpoint Firewall-1 3.0b


References

BUGTRAQ - 20010907 Bug in compile portion for older versions of CheckPoint Firewalls


Last Updated: 27 May 2016 10:36:34