GCVE - cpe:2.3:a:checkpoint:firewall-1:4.1:sp4:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:checkpoint:firewall-1:4.1:sp4:*:*:*:*:*:*

part: a version: 4.1 update: sp4

Vendor	Checkpoint (`963cc759-0773-5380-992a-923d56af82ce`)
Product	Firewall 1 (`cc24dfe3-b9bd-5add-92ee-0f590378cfd4`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2004-2679`	vulnerable	2026-06-03 14:26:48.417962	Details available Check Point Firewall-1 4.1 up to NG AI R55 allows remote attackers to obtain potentially sensitive information by sending an Internet Key Exchange (IKE) with a certain Vendor ID payload that causes Firewall-1 to return a response containing version and other information. Published: 2007-02-27T02:00:00.000Z Updated: 2024-08-08T01:36:25.275Z Open on db.gcve.eu Reference links http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0477.html https://exchange.xforce.ibmcloud.com/vulnerabilities/16434 http://www.nta-monitor.com/news/checkpoint2004/index.htm http://www.securityfocus.com/bid/10558	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0040`	vulnerable	2026-06-03 14:26:33.906093	Details available Stack-based buffer overflow in Check Point VPN-1 Server 4.1 through 4.1 SP6 and Check Point SecuRemote/SecureClient 4.1 through 4.1 build 4200 allows remote attackers to execute arbitrary code via an ISAKMP packet with a large Certificate Request packet. Published: 2004-09-01T04:00:00.000Z Updated: 2024-08-08T00:01:23.594Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=107604682227031&w=2 http://www.kb.cert.org/vuls/id/873334 http://www.securityfocus.com/bid/9582 http://www.osvdb.org/4432 https://exchange.xforce.ibmcloud.com/vulnerabilities/14150	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2002-0428`	vulnerable	2026-06-03 14:26:14.251104	Details available Check Point FireWall-1 SecuRemote/SecuClient 4.0 and 4.1 allows clients to bypass the "authentication timeout" by modifying the to_expire or expire values in the client's users.C configuration file. Published: 2002-06-11T04:00:00.000Z Updated: 2024-08-08T02:49:28.462Z Open on db.gcve.eu Reference links http://www.iss.net/security_center/static/8423.php http://online.securityfocus.com/archive/1/260662 http://www.securityfocus.com/bid/4253	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-1431`	vulnerable	2026-06-03 14:26:12.501913	Details available Nokia Firewall Appliances running IPSO 3.3 and VPN-1/FireWall-1 4.1 Service Pack 3, IPSO 3.4 and VPN-1/FireWall-1 4.1 Service Pack 4, and IPSO 3.4 or IPSO 3.4.1 and VPN-1/FireWall-1 4.1 Service Pack 5, when SYN Defender is configured in Active Gateway mode, does not properly rewrite the third packet of a TCP three-way handshake to use the NAT IP address, which allows remote attackers to gain sensitive information. Published: 2005-03-24T05:00:00.000Z Updated: 2024-08-08T04:58:11.030Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/8293 http://www.kb.cert.org/vuls/id/258731	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-1303`	vulnerable	2026-06-03 14:26:12.128513	Details available The default configuration of SecuRemote for Check Point Firewall-1 allows remote attackers to obtain sensitive configuration information for the protected network without authentication. Published: 2003-04-02T05:00:00.000Z Updated: 2024-08-08T04:51:07.609Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/3058 http://www.securityfocus.com/archive/1/197566 https://exchange.xforce.ibmcloud.com/vulnerabilities/6857 http://www.osvdb.org/588	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.