CVE-1999-1204 - CVE Details

Description

Check Point Firewall-1 does not properly handle certain restricted keywords (e.g., Mail, auth, time) in user-defined objects, which could produce a rule with a default "ANY" address and result in access to more systems than intended by the administrator.

Severity

Overall Severity: N/A

CVSS Metrics

Type	Score	Severity	Vector

Affected Products

checkpoint - firewall-1

Affected Versions:

References

http://marc.info/?l=bugtraq&m=90221101925912&w=2
http://www.checkpoint.com/techsupport/config/keywords.html
http://www.osvdb.org/4416
https://exchange.xforce.ibmcloud.com/vulnerabilities/7293
http://marc.info/?l=bugtraq&m=90221101925912&w=2
http://www.checkpoint.com/techsupport/config/keywords.html
http://www.osvdb.org/4416
https://exchange.xforce.ibmcloud.com/vulnerabilities/7293