← Back

CVE-2001-1431

nvd nist
Published: Oct 8, 2001Modified: Apr 16, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

Nokia Firewall Appliances running IPSO 3.3 and VPN-1/FireWall-1 4.1 Service Pack 3, IPSO 3.4 and VPN-1/FireWall-1 4.1 Service Pack 4, and IPSO 3.4 or IPSO 3.4.1 and VPN-1/FireWall-1 4.1 Service Pack 5, when SYN Defender is configured in Active Gateway mode, does not properly rewrite the third packet of a TCP three-way handshake to use the NAT IP address, which allows remote attackers to gain sensitive information.

Affected (8)

Checkpoint
2 products
Firewall 1
Vpn 1
Nokia
1 product
Firewall Appliance
Configuration A
5 vulnerable
Vulnerable SoftwareAffected Versions
Checkpoint
Firewall 1
Version 4.1 sp3
Firewall 1
Version 4.1 sp4
Firewall 1
Version 4.1 sp5
Checkpoint
Vpn 1
Version 4.1 sp3
Vpn 1
Version 4.1 sp4
Configuration B
3 vulnerable
Vulnerable SoftwareAffected Versions
Nokia
Firewall Appliance
Version ipso_3.3
Firewall Appliance
Version ipso_3.41
Firewall Appliance
Version ipso_3.4

References (4)

Source: cve@mitre.org
US Government Resource
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.