GCVE - cpe:2.3:a:checkpoint:firewall-1:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:checkpoint:firewall-1:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Checkpoint (`963cc759-0773-5380-992a-923d56af82ce`)
Product	Firewall 1 (`cc24dfe3-b9bd-5add-92ee-0f590378cfd4`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2004-0039`	vulnerable	2026-06-03 14:26:33.902406	Details available Multiple format string vulnerabilities in HTTP Application Intelligence (AI) component in Check Point Firewall-1 NG-AI R55 and R54, and Check Point Firewall-1 HTTP Security Server included with NG FP1, FP2, and FP3 allows remote attackers to execute arbitrary code via HTTP requests that cause format string specifiers to be used in an error message, as demonstrated using the scheme of a URI. Published: 2004-02-11T05:00:00.000Z Updated: 2024-08-08T00:01:23.602Z Open on db.gcve.eu Reference links http://xforce.iss.net/xforce/alerts/id/162 http://www.kb.cert.org/vuls/id/790771 http://marc.info/?l=bugtraq&m=107604682227031&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/14149 http://www.ciac.org/ciac/bulletins/o-072.shtml	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-1201`	vulnerable	2026-06-03 14:26:00.652025	Details available Check Point FireWall-1 allows remote attackers to cause a denial of service (high CPU) via a flood of packets to port 264. Published: 2001-09-12T04:00:00.000Z Updated: 2024-08-08T05:45:37.379Z Open on db.gcve.eu Reference links http://archives.neohapsis.com/archives/bugtraq/2000-07/0085.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-1999-1204`	vulnerable	2026-06-03 14:25:42.064619	Details available Check Point Firewall-1 does not properly handle certain restricted keywords (e.g., Mail, auth, time) in user-defined objects, which could produce a rule with a default "ANY" address and result in access to more systems than intended by the administrator. Published: 2002-03-09T05:00:00.000Z Updated: 2024-08-01T17:02:53.810Z Open on db.gcve.eu Reference links http://www.osvdb.org/4416 http://www.checkpoint.com/techsupport/config/keywords.html https://exchange.xforce.ibmcloud.com/vulnerabilities/7293 http://marc.info/?l=bugtraq&m=90221101925912&w=2	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.