Lucene search

[email protected]CVE-2000-0779

HistoryOct 20, 2000 - 4:00 a.m.

CVE-2000-0779

2000-10-2004:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2000-0779

checkpoint firewall-1

rsh/rexec

remote attack

access restriction.

7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

80.0%

JSON

Checkpoint Firewall-1 with the RSH/REXEC setting enabled allows remote attackers to bypass access restrictions and connect to a RSH/REXEC client via malformed connection requests.

CPENameOperatorVersion
checkpoint:firewall-1checkpoint firewall-1eq3.0
checkpoint:firewall-1checkpoint firewall-1eq4.1
checkpoint:firewall-1checkpoint firewall-1eq4.0

CPE	Name	Operator	Version
checkpoint:firewall-1	checkpoint firewall-1	eq	3.0
checkpoint:firewall-1	checkpoint firewall-1	eq	4.1
checkpoint:firewall-1	checkpoint firewall-1	eq	4.0

References

www.checkpoint.com/techsupport/alerts/list_vun.html#Improper_stderr

www.osvdb.org/1487

www.securityfocus.com/bid/1534

7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

80.0%

JSON

Related for CVE-2000-0779

securityvulns1