CVE-2001-1101
N/A
N/A
Summary
The Log Viewer function in the Check Point FireWall-1 GUI for Solaris 3.0b through 4.1 SP2 does not check for the existence of '.log' files when saving files, which allows (1) remote authenticated users to overwrite arbitrary files ending in '.log', or (2) local users to overwrite arbitrary files via a symlink attack.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/archive/1/212826
- http://www.securityfocus.com/bid/3303
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7095
References
- http://www.securityfocus.com/archive/1/212826
- http://www.securityfocus.com/bid/3303
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7095
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.