CVE-2001-1176

Description

Format string vulnerability in Check Point VPN-1/FireWall-1 4.1 allows a remote authenticated firewall administrator to execute arbitrary code via format strings in the control connection.

Affected products

• checkpoint / firewall-14.1 – 4.1
• checkpoint / firewall-14.1 – 4.1
• checkpoint / firewall-14.1 – 4.1
• checkpoint / firewall-14.1 – 4.1
• checkpoint / provider-14.1 – 4.1
• checkpoint / provider-14.1 – 4.1
• checkpoint / provider-14.1 – 4.1
• checkpoint / provider-14.1 – 4.1
• checkpoint / vpn-14.1 – 4.1
• checkpoint / vpn-14.1 – 4.1
• checkpoint / vpn-14.1 – 4.1

References

• MISChttp://www.securityfocus.com/bid/3021
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/6849
• MISChttp://www.osvdb.org/1901
• MISChttp://www.checkpoint.com/techsupport/alerts/format_strings.html
• MISChttp://archives.neohapsis.com/archives/bugtraq/2001-07/0209.html