CVE-2000-0813

Description

Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to redirect FTP connections to other servers ("FTP Bounce") via invalid FTP commands that are processed improperly by FireWall-1, aka "FTP Connection Enforcement Bypass."

Affected products

• checkpoint / firewall-13.0 – 3.0
• checkpoint / firewall-14.0 – 4.0
• checkpoint / firewall-14.1 – 4.1

References

• MISChttp://www.checkpoint.com/techsupport/alerts/list_vun.html#FTP_Connection
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/5474
• MISChttp://www.osvdb.org/4434