CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2001-1431
https://notcve.org/view.php?id=CVE-2001-1431
08 Oct 2001 — Nokia Firewall Appliances running IPSO 3.3 and VPN-1/FireWall-1 4.1 Service Pack 3, IPSO 3.4 and VPN-1/FireWall-1 4.1 Service Pack 4, and IPSO 3.4 or IPSO 3.4.1 and VPN-1/FireWall-1 4.1 Service Pack 5, when SYN Defender is configured in Active Gateway mode, does not properly rewrite the third packet of a TCP three-way handshake to use the NAT IP address, which allows remote attackers to gain sensitive information. • http://www.kb.cert.org/vuls/id/258731 •
CVSS: 9.8EPSS: 8%CPEs: 2EXPL: 0CVE-2001-0940
https://notcve.org/view.php?id=CVE-2001-0940
21 Sep 2001 — Buffer overflow in the GUI authentication code of Check Point VPN-1/FireWall-1 Management Server 4.0 and 4.1 allows remote attackers to execute arbitrary code via a long user name. • http://archives.neohapsis.com/archives/win2ksecadvice/2001-q3/0151.html •
CVSS: 6.4EPSS: 0%CPEs: 5EXPL: 0CVE-2001-1101
https://notcve.org/view.php?id=CVE-2001-1101
08 Sep 2001 — The Log Viewer function in the Check Point FireWall-1 GUI for Solaris 3.0b through 4.1 SP2 does not check for the existence of '.log' files when saving files, which allows (1) remote authenticated users to overwrite arbitrary files ending in '.log', or (2) local users to overwrite arbitrary files via a symlink attack. • http://www.securityfocus.com/archive/1/212826 •
CVSS: 6.2EPSS: 0%CPEs: 4EXPL: 0CVE-2001-1102
https://notcve.org/view.php?id=CVE-2001-1102
08 Sep 2001 — Check Point FireWall-1 3.0b through 4.1 for Solaris allows local users to overwrite arbitrary files via a symlink attack on temporary policy files that end in a .cpp extension, which are set world-writable. • http://www.securityfocus.com/archive/1/212824 •
CVSS: 7.5EPSS: 3%CPEs: 6EXPL: 1CVE-2001-1303 – Check Point Firewall-1 4 Securemote - Network Information Leak
https://notcve.org/view.php?id=CVE-2001-1303
18 Jul 2001 — The default configuration of SecuRemote for Check Point Firewall-1 allows remote attackers to obtain sensitive configuration information for the protected network without authentication. • https://www.exploit-db.com/exploits/21015 •
CVSS: 8.8EPSS: 2%CPEs: 11EXPL: 0CVE-2001-1176
https://notcve.org/view.php?id=CVE-2001-1176
12 Jul 2001 — Format string vulnerability in Check Point VPN-1/FireWall-1 4.1 allows a remote authenticated firewall administrator to execute arbitrary code via format strings in the control connection. • http://archives.neohapsis.com/archives/bugtraq/2001-07/0209.html •
CVSS: 9.1EPSS: 4%CPEs: 3EXPL: 0CVE-2001-1158
https://notcve.org/view.php?id=CVE-2001-1158
09 Jul 2001 — Check Point VPN-1/FireWall-1 4.1 base.def contains a default macro, accept_fw1_rdp, which can allow remote attackers to bypass intended restrictions with forged RDP (internal protocol) headers to UDP port 259 of arbitrary hosts. • http://archives.neohapsis.com/archives/bugtraq/2001-07/0128.html •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2001-0182
https://notcve.org/view.php?id=CVE-2001-0182
26 Mar 2001 — FireWall-1 4.1 with a limited-IP license allows remote attackers to cause a denial of service by sending a large number of spoofed IP packets with various source addresses to the inside interface, which floods the console with warning messages and consumes CPU resources. • http://archives.neohapsis.com/archives/bugtraq/2001-01/0298.html •
CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 2CVE-2001-0082 – Check Point Software Firewall-1 4.1 SP2 - Fast Mode TCP Fragment
https://notcve.org/view.php?id=CVE-2001-0082
02 Feb 2001 — Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode enabled allows remote attackers to bypass access restrictions via malformed, fragmented packets. • https://www.exploit-db.com/exploits/20519 •
CVSS: 7.5EPSS: 7%CPEs: 3EXPL: 3CVE-2000-1037 – Check Point Software Firewall-1 3.0/1 4.0/1 4.1 - Session Agent Dictionary Attack
https://notcve.org/view.php?id=CVE-2000-1037
29 Nov 2000 — Check Point Firewall-1 session agent 3.0 through 4.1 generates different error messages for invalid user names versus invalid passwords, which allows remote attackers to determine valid usernames and guess a password via a brute force attack. • https://www.exploit-db.com/exploits/20215 •