Vulnerability in Nokia Firewall Appliances Impacting VPN-1/FireWall-1
CVE-2001-1431

Currently unrated

Key Information:

Vendor: Checkpoint
Status: Firewall-1; Vpn-1
Vendor: CVE Published:; 8 October 2001

Summary

A flaw exists in Nokia Firewall Appliances when configured with SYN Defender in Active Gateway mode. The issue arises during the TCP three-way handshake process, where the third packet is not correctly rewritten to utilize the NAT IP address. This vulnerability can be exploited by remote attackers, potentially allowing access to sensitive information.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/8293

vdb-entryx_refsource_XF

http://www.kb.cert.org/vuls/id/258731

third-party-advisoryx_refsource_CERT-VN

Timeline

Vulnerability Reserved
Mar 24, 2005
Vulnerability published
Oct 8, 2001