CVE-2001-1499

Currently unrated

Key Information:

Vendor: Checkpoint
Status: Vpn-1
Vendor: CVE Published:; 31 December 2001

Summary

Check Point VPN-1 4.1SP4 using SecuRemote returns different error messages for valid and invalid users, with prompts that vary depending on the authentication method being used, which makes it easier for remote attackers to conduct brute force attacks.

References

http://www.securityfocus.com/bid/3470

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/222366

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/7343

vdb-entryx_refsource_XF

Timeline

Vulnerability Reserved
Jun 21, 2005
Vulnerability published
Dec 31, 2001