Improper Handling of Restricted Keywords in Check Point Firewall-1 User-Defined Objects

Improper Handling of Restricted Keywords in Check Point Firewall-1 User-Defined Objects

CVE-1999-1204 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Check Point Firewall-1 does not properly handle certain restricted keywords (e.g., Mail, auth, time) in user-defined objects, which could produce a rule with a default "ANY" address and result in access to more systems than intended by the administrator.

Learn more about our User Device Pen Test.