CVE-2000-0181

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

11/03/2000

Last modified:

03/04/2025

Description

Firewall-1 3.0 and 4.0 leaks packets with private IP address information, which could allow remote attackers to determine the real IP address of the host that is making the connection.

Impact

Vector 2.0

AV:N/AC:L/Au:N/C:P/I:N/A:N CVSS v2.0 Severity and Metrics:

Base Score: 5.00 MEDIUM
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Attack Vector (AV): Network
Attack Complexity (AC): Low
Authentication (Au): None
Confidentiality (C): Physical
Integrity (I): None
Availability (A): None

Base Score 2.0

5.00

Severity 2.0

MEDIUM

Vulnerable products and versions

CPE	From	Up to
cpe:2.3:a:checkpoint:firewall-1:3.0:::::::*
cpe:2.3:a:checkpoint:firewall-1:4.0:::::::*
cpe:2.3:a:checkpoint:firewall-1:4.1:::::::*

To consult the complete list of CPE names with products and versions, see this page

References to Advisories, Solutions, and Tools

http://archives.neohapsis.com/archives/bugtraq/2000-03/0119.html
http://www.osvdb.org/1256
http://www.securityfocus.com/bid/1054
http://archives.neohapsis.com/archives/bugtraq/2000-03/0119.html
http://www.osvdb.org/1256
http://www.securityfocus.com/bid/1054