PT-2002-3117 · Check Point · Check Point Next Generation+1

Published

2002-12-31

Updated

2008-09-05

CVE-2002-2405

CVSS v2.0

4.9

Medium

Vector

AV:N/AC:M/Au:S/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions Check Point FireWall-1 versions 4.1 Check Point Next Generation (NG)

Description The issue allows remote attackers to bypass the firewall and pass unauthorized traffic, including HTTPS and FTP, when UserAuth is configured to proxy HTTP traffic only.

Recommendations For Check Point FireWall-1 version 4.1, reconfigure UserAuth to properly restrict traffic. For Check Point Next Generation (NG), reconfigure UserAuth to properly restrict traffic.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2002-2405

Affected Products

Check Point Firewall-1

Check Point Next Generation

PT-2002-3117 · Check Point · Check Point Next Generation+1

CVE-2002-2405

Weakness Enumeration

Related Identifiers

Affected Products

References · 5