CVE-2001-1431 in Firewall Applianceinfo

Summary

Nokia Firewall Appliances running IPSO 3.3 and VPN-1/FireWall-1 4.1 Service Pack 3, IPSO 3.4 and VPN-1/FireWall-1 4.1 Service Pack 4, and IPSO 3.4 or IPSO 3.4.1 and VPN-1/FireWall-1 4.1 Service Pack 5, when SYN Defender is configured in Active Gateway mode, does not properly rewrite the third packet of a TCP three-way handshake to use the NAT IP address, which allows remote attackers to gain sensitive information.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

03/24/2005

Disclosure

10/08/2001

Moderation

VulDB entry created

Entries

1: VDB-17475

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

5.3

EPSS

0.00753

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2001-1431
NVD	https://nvd.nist.gov/vuln/detail/CVE-2001-1431
CVE Details	https://www.cvedetails.com/cve/CVE-2001-1431/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!