CVSS: 6.4EPSS: 0%CPEs: 5EXPL: 0CVE-2001-1101
https://notcve.org/view.php?id=CVE-2001-1101
08 Sep 2001 — The Log Viewer function in the Check Point FireWall-1 GUI for Solaris 3.0b through 4.1 SP2 does not check for the existence of '.log' files when saving files, which allows (1) remote authenticated users to overwrite arbitrary files ending in '.log', or (2) local users to overwrite arbitrary files via a symlink attack. • http://www.securityfocus.com/archive/1/212826 •
CVSS: 6.2EPSS: 0%CPEs: 4EXPL: 0CVE-2001-1102
https://notcve.org/view.php?id=CVE-2001-1102
08 Sep 2001 — Check Point FireWall-1 3.0b through 4.1 for Solaris allows local users to overwrite arbitrary files via a symlink attack on temporary policy files that end in a .cpp extension, which are set world-writable. • http://www.securityfocus.com/archive/1/212824 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2000-1201
https://notcve.org/view.php?id=CVE-2000-1201
31 Aug 2001 — Check Point FireWall-1 allows remote attackers to cause a denial of service (high CPU) via a flood of packets to port 264. • http://archives.neohapsis.com/archives/bugtraq/2000-07/0085.html •
CVSS: 7.5EPSS: 3%CPEs: 6EXPL: 1CVE-2001-1303 – Check Point Firewall-1 4 Securemote - Network Information Leak
https://notcve.org/view.php?id=CVE-2001-1303
18 Jul 2001 — The default configuration of SecuRemote for Check Point Firewall-1 allows remote attackers to obtain sensitive configuration information for the protected network without authentication. • https://www.exploit-db.com/exploits/21015 •
CVSS: 8.8EPSS: 2%CPEs: 11EXPL: 0CVE-2001-1176
https://notcve.org/view.php?id=CVE-2001-1176
12 Jul 2001 — Format string vulnerability in Check Point VPN-1/FireWall-1 4.1 allows a remote authenticated firewall administrator to execute arbitrary code via format strings in the control connection. • http://archives.neohapsis.com/archives/bugtraq/2001-07/0209.html •
CVSS: 9.1EPSS: 4%CPEs: 3EXPL: 0CVE-2001-1158
https://notcve.org/view.php?id=CVE-2001-1158
09 Jul 2001 — Check Point VPN-1/FireWall-1 4.1 base.def contains a default macro, accept_fw1_rdp, which can allow remote attackers to bypass intended restrictions with forged RDP (internal protocol) headers to UDP port 259 of arbitrary hosts. • http://archives.neohapsis.com/archives/bugtraq/2001-07/0128.html •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2001-0182
https://notcve.org/view.php?id=CVE-2001-0182
26 Mar 2001 — FireWall-1 4.1 with a limited-IP license allows remote attackers to cause a denial of service by sending a large number of spoofed IP packets with various source addresses to the inside interface, which floods the console with warning messages and consumes CPU resources. • http://archives.neohapsis.com/archives/bugtraq/2001-01/0298.html •
CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 2CVE-2001-0082 – Check Point Software Firewall-1 4.1 SP2 - Fast Mode TCP Fragment
https://notcve.org/view.php?id=CVE-2001-0082
02 Feb 2001 — Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode enabled allows remote attackers to bypass access restrictions via malformed, fragmented packets. • https://www.exploit-db.com/exploits/20519 •
CVSS: 5.3EPSS: 1%CPEs: 2EXPL: 2CVE-2000-1032
https://notcve.org/view.php?id=CVE-2000-1032
11 Dec 2000 — The client authentication interface for Check Point Firewall-1 4.0 and earlier generates different error messages for invalid usernames versus invalid passwords, which allows remote attackers to identify valid usernames on the firewall. • http://www.osvdb.org/1632 •
CVSS: 7.5EPSS: 7%CPEs: 3EXPL: 3CVE-2000-1037 – Check Point Software Firewall-1 3.0/1 4.0/1 4.1 - Session Agent Dictionary Attack
https://notcve.org/view.php?id=CVE-2000-1037
29 Nov 2000 — Check Point Firewall-1 session agent 3.0 through 4.1 generates different error messages for invalid user names versus invalid passwords, which allows remote attackers to determine valid usernames and guess a password via a brute force attack. • https://www.exploit-db.com/exploits/20215 •