CVE-2002-2405

2007-11-0117:00:00

mitre

www.cve.org

check point firewall-1

userauth configuration

https bypass

ftp bypass

security vulnerability

AI Score

6.8

Confidence

Low

EPSS

0.002

Percentile

52.2%

JSON

Check Point FireWall-1 4.1 and Next Generation (NG), with UserAuth configured to proxy HTTP traffic only, allows remote attackers to pass unauthorized HTTPS, FTP and possibly other traffic through the firewall.

References

archives.neohapsis.com/archives/bugtraq/2002-09/0219.html

www.iss.net/security_center/static/10139.php

www.securityfocus.com/bid/5744