Vulnerability: Privilege Escalation and Firewall Policy Modification via Symlink Exploitation in Check Point Firewall-1 3.0b through 4.0 SP1

Vulnerability: Privilege Escalation and Firewall Policy Modification via Symlink Exploitation in Check Point Firewall-1 3.0b through 4.0 SP1

CVE-2001-1171 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Check Point Firewall-1 3.0b through 4.0 SP1 follows symlinks and creates a world-writable temporary .cpp file when compiling Policy rules, which could allow local users to gain privileges or modify the firewall policy.

Learn more about our User Device Pen Test.