Page 4 of 22 results (0.008 seconds)

CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0

Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to redirect FTP connections to other servers ("FTP Bounce") via invalid FTP commands that are processed improperly by FireWall-1, aka "FTP Connection Enforcement Bypass." • http://www.checkpoint.com/techsupport/alerts/list_vun.html#FTP_Connection http://www.osvdb.org/4434 https://exchange.xforce.ibmcloud.com/vulnerabilities/5474 •

CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0

Checkpoint Firewall-1 with the RSH/REXEC setting enabled allows remote attackers to bypass access restrictions and connect to a RSH/REXEC client via malformed connection requests. • http://www.checkpoint.com/techsupport/alerts/list_vun.html#Improper_stderr http://www.osvdb.org/1487 http://www.securityfocus.com/bid/1534 •

CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0

Firewall-1 3.0 and 4.0 leaks packets with private IP address information, which could allow remote attackers to determine the real IP address of the host that is making the connection. • http://archives.neohapsis.com/archives/bugtraq/2000-03/0119.html http://www.osvdb.org/1256 http://www.securityfocus.com/bid/1054 •

CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0

Check Point Firewall-1 allows remote attackers to bypass port access restrictions on an FTP server by forcing it to send malicious packets that Firewall-1 misinterprets as a valid 227 response to a client's PASV attempt. • http://www.kb.cert.org/vuls/id/328867 http://www.osvdb.org/4417 http://www.securityfocus.com/bid/979 •

CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 1

Firewall-1 does not properly filter script tags, which allows remote attackers to bypass the "Strip Script Tags" restriction by including an extra < in front of the SCRIPT tag. • https://www.exploit-db.com/exploits/19732 http://www.osvdb.org/1212 http://www.securityfocus.com/bid/954 •