Lucene search
MitreCVELIST:CVE-2004-0039HistoryFeb 11, 2004 - 5:00 a.m.
CVE-2004-0039
2004-02-1105:00:00
mitre
www.cve.org
4
Multiple format string vulnerabilities in HTTP Application Intelligence (AI) component in Check Point Firewall-1 NG-AI R55 and R54, and Check Point Firewall-1 HTTP Security Server included with NG FP1, FP2, and FP3 allows remote attackers to execute arbitrary code via HTTP requests that cause format string specifiers to be used in an error message, as demonstrated using the scheme of a URI.
References
marc.info/?l=bugtraq&m=107604682227031&w=2
www.checkpoint.com/techsupport/alerts/security_server.html
www.ciac.org/ciac/bulletins/o-072.shtml
www.kb.cert.org/vuls/id/790771
www.securityfocus.com/bid/9581
www.us-cert.gov/cas/techalerts/TA04-036A.html
xforce.iss.net/xforce/alerts/id/162
exchange.xforce.ibmcloud.com/vulnerabilities/14149
Related
cert
cert
HTTP Parsing Vulnerabilities in Check Point Firewall-1
2004-02-05 00:00:00
nvd
nvd
CVE-2004-0039
2004-03-03 05:00:00
cve
cve
CVE-2004-0039
2004-03-03 05:00:00
checkpoint_advisories
checkpoint_advisories
nessus
nessus
Check Point FireWall-1 4.x Multiple Vulnerabilities (OF, FS)
2004-03-02 00:00:00