CVE-2004-0039 in Firewall-1info

Summary

Multiple format string vulnerabilities in HTTP Application Intelligence (AI) component in Check Point Firewall-1 NG-AI R55 and R54, and Check Point Firewall-1 HTTP Security Server included with NG FP1, FP2, and FP3 allows remote attackers to execute arbitrary code via HTTP requests that cause format string specifiers to be used in an error message, as demonstrated using the scheme of a URI.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Disclosure

03/03/2004

Moderation

VulDB entry created

Entries

VDB-505 (1)

CPE

ready

CWE

CWE-134 (Confirmed)

CVSS

5.6

EPSS

0.46940

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-0039
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-0039
CVE Details	https://www.cvedetails.com/cve/CVE-2004-0039/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!