Check Point response to FireWall-1 GUI Log Viewer Vulnerability
An issue exists in VPN-1/FireWall-1 Management Servers running on Windows NT or
Windows 2000. A malicious administrator can exploit a buffer overflow condition in
the GUI authentication code to potentially impair management station functionality or
to execute code. Any attack must come from an IP address explicitly defined as an
authorized GUI client. Only management stations running Windows NT or Windows 2000
are affected.
More information is available at http://www.checkpoint.com/techsupport/alerts/
Hotfixes are available for immediate download at
http://www.checkpoint.com/techsupport/index.html.
This advisory was brought to our attention on September 3rd, 2001 by the "QinetiQ
SHC" Security Research Team.