CVE-2001-1176
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
12/07/2001
Last modified:
03/04/2025
Description
Format string vulnerability in Check Point VPN-1/FireWall-1 4.1 allows a remote authenticated firewall administrator to execute arbitrary code via format strings in the control connection.
Impact
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:checkpoint:firewall-1:4.1:*:*:*:*:*:*:* | ||
cpe:2.3:a:checkpoint:firewall-1:4.1:sp1:*:*:*:*:*:* | ||
cpe:2.3:a:checkpoint:firewall-1:4.1:sp2:*:*:*:*:*:* | ||
cpe:2.3:a:checkpoint:firewall-1:4.1:sp3:*:*:*:*:*:* | ||
cpe:2.3:a:checkpoint:provider-1:4.1:*:*:*:*:*:*:* | ||
cpe:2.3:a:checkpoint:provider-1:4.1:sp1:*:*:*:*:*:* | ||
cpe:2.3:a:checkpoint:provider-1:4.1:sp2:*:*:*:*:*:* | ||
cpe:2.3:a:checkpoint:provider-1:4.1:sp3:*:*:*:*:*:* | ||
cpe:2.3:a:checkpoint:vpn-1:4.1:*:*:*:*:*:*:* | ||
cpe:2.3:a:checkpoint:vpn-1:4.1:sp1:*:*:*:*:*:* | ||
cpe:2.3:a:checkpoint:vpn-1:4.1:sp3:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://archives.neohapsis.com/archives/bugtraq/2001-07/0209.html
- http://www.checkpoint.com/techsupport/alerts/format_strings.html
- http://www.osvdb.org/1901
- http://www.securityfocus.com/bid/3021
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6849
- http://archives.neohapsis.com/archives/bugtraq/2001-07/0209.html
- http://www.checkpoint.com/techsupport/alerts/format_strings.html
- http://www.osvdb.org/1901
- http://www.securityfocus.com/bid/3021
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6849