CVE-2001-1158 | Vulnerability Database | Aqua Security

Check Point VPN-1/FireWall-1 4.1 base.def contains a default macro, accept_fw1_rdp, which can allow remote attackers to bypass intended restrictions with forged RDP (internal protocol) headers to UDP port 259 of arbitrary hosts.

Affected Software

Name	Vendor	Start Version	End Version
Firewall-1	Checkpoint	4.1 (including)	4.1 (including)
Firewall-1	Checkpoint	4.1-sp2 (including)	4.1-sp2 (including)
Firewall-1	Checkpoint	4.1_build_41439 (including)	4.1_build_41439 (including)

References

http://archives.neohapsis.com/archives/bugtraq/2001-07/0128.html
http://ciac.llnl.gov/ciac/bulletins/l-109.shtml
http://online.securityfocus.com/cgi-bin/archive.pl?id=1\u0026start=2002-03-11\u0026end=2002-03-17\u0026mid=195647\u0026threads=1
http://www.cert.org/advisories/CA-2001-17.html
http://www.checkpoint.com/techsupport/alerts/rdp.html
http://www.kb.cert.org/vuls/id/310295
http://www.osvdb.org/1884
http://www.securityfocus.com/bid/2952
https://exchange.xforce.ibmcloud.com/vulnerabilities/6815
http://archives.neohapsis.com/archives/bugtraq/2001-07/0128.html
http://ciac.llnl.gov/ciac/bulletins/l-109.shtml
http://online.securityfocus.com/cgi-bin/archive.pl?id=1\u0026start=2002-03-11\u0026end=2002-03-17\u0026mid=195647\u0026threads=1
http://www.cert.org/advisories/CA-2001-17.html
http://www.checkpoint.com/techsupport/alerts/rdp.html
http://www.kb.cert.org/vuls/id/310295
http://www.osvdb.org/1884
http://www.securityfocus.com/bid/2952
https://exchange.xforce.ibmcloud.com/vulnerabilities/6815

NVD	https://nvd.nist.gov/vuln/detail/CVE-2001-1158
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html