Check Point FireWall-1 3.0b through 4.1 for Solaris allows local users to overwrite arbitrary files via a symlink attack on temporary policy files that end in a .cpp extension, which are set world-writable.
References
Link | Resource |
---|---|
http://www.securityfocus.com/archive/1/212824 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/3300 | Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/7094 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2001-09-07 21:00
Updated : 2017-12-18 18:29
NVD link : CVE-2001-1102
Mitre link : CVE-2001-1102
JSON object : View
CWE
Products Affected
checkpoint
- firewall-1