Lucene search

[email protected]NVD:CVE-2001-1102

HistorySep 08, 2001 - 4:00 a.m.

CVE-2001-1102

2001-09-0804:00:00

[email protected]

web.nvd.nist.gov

CVSS2

6.2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

High

EPSS

Percentile

5.1%

JSON

Check Point FireWall-1 3.0b through 4.1 for Solaris allows local users to overwrite arbitrary files via a symlink attack on temporary policy files that end in a .cpp extension, which are set world-writable.

Affected configurations

Nvd

Node

checkpointfirewall-1Match3.0

checkpointfirewall-1Match4.0

checkpointfirewall-1Match4.1

checkpointfirewall-1Match4.1sp1

VendorProductVersionCPE
checkpointfirewall-13.0cpe:2.3:a:checkpoint:firewall-1:3.0:*:*:*:*:*:*:*
checkpointfirewall-14.0cpe:2.3:a:checkpoint:firewall-1:4.0:*:*:*:*:*:*:*
checkpointfirewall-14.1cpe:2.3:a:checkpoint:firewall-1:4.1:*:*:*:*:*:*:*
checkpointfirewall-14.1cpe:2.3:a:checkpoint:firewall-1:4.1:sp1:*:*:*:*:*:*

Vendor	Product	Version	CPE
checkpoint	firewall-1	3.0	cpe:2.3:a:checkpoint:firewall-1:3.0:::::::*
checkpoint	firewall-1	4.0	cpe:2.3:a:checkpoint:firewall-1:4.0:::::::*
checkpoint	firewall-1	4.1	cpe:2.3:a:checkpoint:firewall-1:4.1:::::::*
checkpoint	firewall-1	4.1	cpe:2.3:a:checkpoint:firewall-1:4.1:sp1::::::

References

www.securityfocus.com/archive/1/212824

www.securityfocus.com/bid/3300

exchange.xforce.ibmcloud.com/vulnerabilities/7094

CVSS2

6.2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2001-1102

cve1 cvelist1