Firewall 1
by Checkpoint
CVEs (45)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2000-0181 | 0.00 | — | 0.02 | Mar 11, 2000 | Firewall-1 3.0 and 4.0 leaks packets with private IP address information, which could allow remote attackers to determine the real IP address of the host that is making the connection. | |||
| CVE-2000-0150 | 0.00 | — | 0.02 | Feb 12, 2000 | Check Point Firewall-1 allows remote attackers to bypass port access restrictions on an FTP server by forcing it to send malicious packets that Firewall-1 misinterprets as a valid 227 response to a client's PASV attempt. | |||
| CVE-1999-0895 | 0.00 | — | 0.01 | Oct 20, 1999 | Firewall-1 does not properly restrict access to LDAP attributes. | |||
| CVE-1999-0675 | 0.00 | — | 0.01 | Aug 9, 1999 | Check Point FireWall-1 can be subjected to a denial of service via UDP packets that are sent through VPN-1 to port 0 of a host. | |||
| CVE-1999-1204 | 0.00 | — | 0.01 | May 11, 1998 | Check Point Firewall-1 does not properly handle certain restricted keywords (e.g., Mail, auth, time) in user-defined objects, which could produce a rule with a default "ANY" address and result in access to more systems than intended by the administrator. |
- CVE-2000-0181Mar 11, 2000risk 0.00cvss —epss 0.02
Firewall-1 3.0 and 4.0 leaks packets with private IP address information, which could allow remote attackers to determine the real IP address of the host that is making the connection.
- CVE-2000-0150Feb 12, 2000risk 0.00cvss —epss 0.02
Check Point Firewall-1 allows remote attackers to bypass port access restrictions on an FTP server by forcing it to send malicious packets that Firewall-1 misinterprets as a valid 227 response to a client's PASV attempt.
- CVE-1999-0895Oct 20, 1999risk 0.00cvss —epss 0.01
Firewall-1 does not properly restrict access to LDAP attributes.
- CVE-1999-0675Aug 9, 1999risk 0.00cvss —epss 0.01
Check Point FireWall-1 can be subjected to a denial of service via UDP packets that are sent through VPN-1 to port 0 of a host.
- CVE-1999-1204May 11, 1998risk 0.00cvss —epss 0.01
Check Point Firewall-1 does not properly handle certain restricted keywords (e.g., Mail, auth, time) in user-defined objects, which could produce a rule with a default "ANY" address and result in access to more systems than intended by the administrator.
Page 3 of 3