Check Point FireWall-1 Valid Username Information Disclosure

2000-11-01T00:00:00
ID OSVDB:1632
Type osvdb
Reporter Ryan Gray(ryan@sniper.org)
Modified 2000-11-01T00:00:00

Description

Vulnerability Description

FireWall-1 contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker supplies a login name, which will disclose the validity of the account resulting in a loss of confidentiality.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

FireWall-1 contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker supplies a login name, which will disclose the validity of the account resulting in a loss of confidentiality.

References:

Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2000-11/0058.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2000-11/0036.html ISS X-Force ID: 5816 CVE-2000-1032 Bugtraq ID: 1890