cbcvebase.
CVE-2001-1101
published 2001-09-08

CVE-2001-1101: The Log Viewer function in the Check Point FireWall-1 GUI for Solaris 3.0b through 4.1 SP2 does not check for the existence of '.log' files when saving files…

PriorityP415medium6.4CVSS 2.0
AVNACLAuNCNIPAP
EPSS
1.47%
70.5th percentile
The Log Viewer function in the Check Point FireWall-1 GUI for Solaris 3.0b through 4.1 SP2 does not check for the existence of '.log' files when saving files, which allows (1) remote authenticated users to overwrite arbitrary files ending in '.log', or (2) local users to overwrite arbitrary files via a symlink attack.

Affected

3 ranges
VendorProductVersion rangeFixed in
checkpointfirewall-1
checkpointfirewall-1
checkpointfirewall-1
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.