Symlink Vulnerability in Check Point Firewall-1 by Check Point
CVE-2001-1171

Currently unrated

Key Information:

Vendor: Checkpoint
Status: Firewall-1
Vendor: CVE Published:; 1 April 2002

What is CVE-2001-1171?

Check Point Firewall-1 versions 3.0b through 4.0 SP1 allow local users to exploit a symlink vulnerability by creating a world-writable temporary .cpp file during policy rule compilation. This design flaw can enable users to escalate privileges or alter firewall policies, potentially compromising network security.

References

http://archives.neohapsis.com/archives/bugtraq/2001-09/00...

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 1, 2002
Vulnerability Reserved
Mar 15, 2002

Checkpoint

What is CVE-2001-1171?

References

Timeline