CVE-2001-1158

Опубликовано: 09 июл. 2001

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Check Point VPN-1/FireWall-1 4.1 base.def contains a default macro, accept_fw1_rdp, which can allow remote attackers to bypass intended restrictions with forged RDP (internal protocol) headers to UDP port 259 of arbitrary hosts.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2001-07/0128.html
Patch
Vendor Advisory
http://ciac.llnl.gov/ciac/bulletins/l-109.shtml
http://online.securityfocus.com/cgi-bin/archive.pl?id=1&start=2002-03-11&end=2002-03-17&mid=195647&threads=1
http://www.cert.org/advisories/CA-2001-17.html
US Government Resource
http://www.checkpoint.com/techsupport/alerts/rdp.html
http://www.kb.cert.org/vuls/id/310295
US Government Resource
http://www.osvdb.org/1884
http://www.securityfocus.com/bid/2952
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/6815
http://archives.neohapsis.com/archives/bugtraq/2001-07/0128.html
Patch
Vendor Advisory
http://ciac.llnl.gov/ciac/bulletins/l-109.shtml
http://online.securityfocus.com/cgi-bin/archive.pl?id=1&start=2002-03-11&end=2002-03-17&mid=195647&threads=1
http://www.cert.org/advisories/CA-2001-17.html
US Government Resource
http://www.checkpoint.com/techsupport/alerts/rdp.html
http://www.kb.cert.org/vuls/id/310295
US Government Resource
http://www.osvdb.org/1884
http://www.securityfocus.com/bid/2952
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/6815

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:checkpoint:firewall-1:4.1:*:*:*:*:*:*:*

cpe:2.3:a:checkpoint:firewall-1:4.1:sp2:*:*:*:*:*:*

cpe:2.3:a:checkpoint:firewall-1:4.1_build_41439:*:*:*:*:*:*:*

EPSS

Процентиль: 89%

0.04823

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-gf35-4867-g4gj

github

больше 3 лет назад