Vulnerability Details CVE-1999-1204
Check Point Firewall-1 does not properly handle certain restricted keywords (e.g., Mail, auth, time) in user-defined objects, which could produce a rule with a default "ANY" address and result in access to more systems than intended by the administrator.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=90221101925912&w=2
- http://www.checkpoint.com/techsupport/config/keywords.html
- http://www.osvdb.org/4416
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7293
- http://marc.info/?l=bugtraq&m=90221101925912&w=2
- http://www.checkpoint.com/techsupport/config/keywords.html
- http://www.osvdb.org/4416
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7293
Products affected by CVE-1999-1204
-
cpe:2.3:a:checkpoint:firewall-1:-
-
cpe:2.3:a:checkpoint:firewall-1:3.0
-
cpe:2.3:a:checkpoint:firewall-1:3.0b
-
cpe:2.3:a:checkpoint:firewall-1:4.0
-
cpe:2.3:a:checkpoint:firewall-1:4.1
-
cpe:2.3:a:checkpoint:firewall-1:4.1_build_41439
-
cpe:2.3:a:checkpoint:firewall-1:r55w