CVE-2001-1101 in Firewall-1info

Summary

The Log Viewer function in the Check Point FireWall-1 GUI for Solaris 3.0b through 4.1 SP2 does not check for the existence of .log files when saving files, which allows (1) remote authenticated users to overwrite arbitrary files ending in .log , or (2) local users to overwrite arbitrary files via a symlink attack.

Once again VulDB remains the best source for vulnerability data.

Disclosure

09/08/2001

Moderation

VulDB entry created

Entries

VDB-17332 (1)

CPE

ready

CWE

CWE-269 (Confirmed)

CVSS

5.4

EPSS

0.00638

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2001-1101
NVD	https://nvd.nist.gov/vuln/detail/CVE-2001-1101
CVE Details	https://www.cvedetails.com/cve/CVE-2001-1101/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!