{"id": "CVE-2000-0813", "bulletinFamily": "NVD", "title": "CVE-2000-0813", "description": "Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to redirect FTP connections to other servers (\"FTP Bounce\") via invalid FTP commands that are processed improperly by FireWall-1, aka \"FTP Connection Enforcement Bypass.\"", "published": "2000-11-14T00:00:00", "modified": "2017-10-09T21:29:18", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2000-0813", "reporter": "NVD", "references": ["http://www.checkpoint.com/techsupport/alerts/list_vun.html#FTP_Connection", "https://exchange.xforce.ibmcloud.com/vulnerabilities/5474"], "cvelist": ["CVE-2000-0813"], "type": "cve", "lastseen": "2017-10-10T10:34:37", "history": [{"bulletin": {"assessment": {"href": "", "name": "", "system": ""}, "bulletinFamily": "NVD", "cpe": ["cpe:/a:checkpoint:firewall-1:3.0", "cpe:/a:checkpoint:firewall-1:4.1", "cpe:/a:checkpoint:firewall-1:4.0"], "cvelist": ["CVE-2000-0813"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "description": "Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to redirect FTP connections to other servers (\"FTP Bounce\") via invalid FTP commands that are processed improperly by FireWall-1, aka \"FTP Connection Enforcement Bypass.\"", "edition": 1, "enchantments": {}, "hash": "4cc4c89a82e229dc71bd16ce81edbc744397005769cc4199e7e1c100e8403051", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "1d32e5af6cdabe8b9f8bf5d0f47b0895", "key": "references"}, {"hash": "de1712b718be48797984456ccbb1aac8", "key": "published"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "d1a655208d9ccdb1d090cfb08aa6d971", "key": "cvelist"}, {"hash": "17b1d921de287132c7369f4ff48298b2", "key": "title"}, {"hash": "bd6db413ffd3bf3b4253c57a7d1a05b0", "key": "modified"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "4e427ec2e26c0a5c1d30ebb83319c432", "key": "href"}, {"hash": "a792e2393dff1e200b885c5245988f6f", "key": "cvss"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "37e136a25d6b3ceb48822482e3e967c8", "key": "description"}, {"hash": "d16f2b611472026447892ab01389167c", "key": "cpe"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2000-0813", "id": "CVE-2000-0813", "lastseen": "2016-09-03T02:44:50", "modified": "2008-09-10T15:05:53", "objectVersion": "1.2", "published": "2000-11-14T00:00:00", "references": ["http://www.checkpoint.com/techsupport/alerts/list_vun.html#FTP_Connection", "http://xforce.iss.net/static/5474.php"], "reporter": "NVD", "scanner": [], "title": "CVE-2000-0813", "type": "cve", "viewCount": 1}, "differentElements": ["references", "modified"], "edition": 1, "lastseen": "2016-09-03T02:44:50"}], "edition": 2, "hashmap": [{"key": "assessment", "hash": "6d3f4796275bb54c21a33b82f399cc6d"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "d16f2b611472026447892ab01389167c"}, {"key": "cvelist", "hash": "d1a655208d9ccdb1d090cfb08aa6d971"}, {"key": "cvss", "hash": "a792e2393dff1e200b885c5245988f6f"}, {"key": "description", "hash": "37e136a25d6b3ceb48822482e3e967c8"}, {"key": "href", "hash": "4e427ec2e26c0a5c1d30ebb83319c432"}, {"key": "modified", "hash": "5acdc6bfd6e9975b49c84bbdf428e1d8"}, {"key": "published", "hash": "de1712b718be48797984456ccbb1aac8"}, {"key": "references", "hash": "e99b397be20da88b82a93a55e1da735a"}, {"key": "reporter", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "scanner", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "17b1d921de287132c7369f4ff48298b2"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "83064ede28aabd6dcbb70004b1e11cbbe6c46d0e558bd73b162f678adeaefce9", "viewCount": 1, "enchantments": {"vulnersScore": 5.0}, "objectVersion": "1.3", "cpe": ["cpe:/a:checkpoint:firewall-1:3.0", "cpe:/a:checkpoint:firewall-1:4.1", "cpe:/a:checkpoint:firewall-1:4.0"], "assessment": {"href": "", "name": "", "system": ""}, "scanner": []}

{"result": {"osvdb": [{"id": "OSVDB:4434", "type": "osvdb", "title": "Check Point FireWall-1 FTP Redirect Bypass", "description": "## Vulnerability Description\nCheck Point FireWall-1 contains a flaw that may allow a remote attacker to redirect connections through vulnerable FTP servers via a \"bounce\" attack. By using the PORT command, attackers can open connections to arbitrary resources normally protected by the firewall. \n## Solution Description\nUpgrade to version 4.0 SP7, 4.1 SP2, or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the \nfollowing workaround: Configure the FTP server to be read only.\n## Short Description\nCheck Point FireWall-1 contains a flaw that may allow a remote attacker to redirect connections through vulnerable FTP servers via a \"bounce\" attack. By using the PORT command, attackers can open connections to arbitrary resources normally protected by the firewall. \n## References:\n[Vendor Specific Advisory URL](http://www.checkpoint.com/techsupport/alerts/list_vun.html#FTP_Connection)\nOther Advisory URL: http://www.iss.net/xforce/alerts/id/advise62\nKeyword: FTP bounce attack\nISS X-Force ID: 5474\nGeneric Informational URL: http://www.cert.org/tech_tips/ftp_port_attacks.html\n[CVE-2000-0813](https://vulners.com/cve/CVE-2000-0813)\nCIAC Advisory: k-073\nCERT: CA-1997-27\n", "published": "2000-07-26T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "https://vulners.com/osvdb/OSVDB:4434", "cvelist": ["CVE-2000-0813"], "lastseen": "2017-04-28T13:19:59"}]}}