One-way Connection Enforcement Bypass in Check Point VPN-1/FireWall-1
CVE-2000-0804

Currently unrated

Key Information:

Vendor

Checkpoint
Status
Firewall-1
Vendor
CVE Published:
14 November 2000

What is CVE-2000-0804?

The vulnerability in Check Point's VPN-1/FireWall-1 4.1 and earlier versions allows remote attackers to exploit a flaw in directionality checks. By using fragmented TCP connection requests or by attempting to reopen closed TCP connections, attackers can effectively bypass security measures intended to enforce one-way connection rules. This behavior could potentially expose systems to unauthorized access, allowing intruders to interact with sensitive systems externally. Organizations using these products are encouraged to review their security configurations and apply any necessary patches to mitigate this risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.osvdb.org/4419
vdb-entryx_refsource_OSVDB
http://www.checkpoint.com/techsupport/alerts/list_vun.htm...
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/5468
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.