PT-2001-2299 · Check Point · Check Point Vpn-1/Firewall-1

Published

2001-07-09

Updated

2017-10-10

CVE-2001-1158

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Check Point VPN-1/FireWall-1 version 4.1

Description The issue allows remote attackers to bypass intended restrictions by forging RDP headers to UDP port 259 of arbitrary hosts, due to a default macro in the base.def configuration.

Recommendations For Check Point VPN-1/FireWall-1 version 4.1, consider modifying the base.def configuration to remove or restrict the accept fw1 rdp macro to prevent unauthorized access.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-1158

Affected Products

Check Point Vpn-1/Firewall-1

PT-2001-2299 · Check Point · Check Point Vpn-1/Firewall-1

CVE-2001-1158

Related Identifiers

Affected Products

References · 11