CVE-2001-1171 — HIGH (7.2) — White Hats Nepal

Vulnerability Description

Check Point Firewall-1 3.0b through 4.0 SP1 follows symlinks and creates a world-writable temporary .cpp file when compiling Policy rules, which could allow local users to gain privileges or modify the firewall policy.

CVSS Score

7.2

HIGH

AV:L/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Checkpoint	Firewall-1	3.0b

References

http://archives.neohapsis.com/archives/bugtraq/2001-09/0046.htmlPatchVendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2001-09/0046.htmlPatchVendor Advisory

FAQ

What is CVE-2001-1171?

CVE-2001-1171 is a vulnerability with a CVSS score of 7.2 (HIGH). Check Point Firewall-1 3.0b through 4.0 SP1 follows symlinks and creates a world-writable temporary .cpp file when compiling Policy rules, which could allow local users to gain privileges or modify th...

How severe is CVE-2001-1171?

CVE-2001-1171 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2001-1171?

Check the references section above for vendor advisories and patch information. Affected products include: Checkpoint Firewall-1.