Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2003-0757 — Checkpoint Firewall-1 vulnerability

4 documents4 sources

Severity

5.0MEDIUMNVD

EPSS

6.7%

top 8.74%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Checkpoint Firewall-1

Timeline

PublishedOct 20

Latest updateApr 29

Description

Check Point FireWall-1 4.0 and 4.1 before SP5 allows remote attackers to obtain the IP addresses of internal interfaces via certain SecuRemote requests to TCP ports 256 or 264, which leaks the IP addresses in a reply packet.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDcheckpoint/firewall-14.0, 4.1+1

🔴Vulnerability Details

GHSA

GHSA-5v69-cr76-25p2: Check Point FireWall-1 4↗2022-04-29

▶

CVEList

CVE-2003-0757: Check Point FireWall-1 4↗2003-09-06

▶

💥Exploits & PoCs

Exploit-DB

Check Point Firewall-1 4.x - SecuRemote Internal Interface Address Information Leakage↗2001-07-17

▶