CVE Vulnerabilities

CVE-2001-1102

Published: Sep 08, 2001 | Modified: Dec 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.2 MEDIUM
AV:L/AC:H/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Check Point FireWall-1 3.0b through 4.1 for Solaris allows local users to overwrite arbitrary files via a symlink attack on temporary policy files that end in a .cpp extension, which are set world-writable.

Affected Software

Name Vendor Start Version End Version
Firewall-1 Checkpoint 3.0 3.0
Firewall-1 Checkpoint 4.0 4.0
Firewall-1 Checkpoint 4.1 4.1
Firewall-1 Checkpoint 4.1 4.1

References