Check Point FireWall-1 3.0b up to and including 4.1 for Solaris allows local users to overwrite arbitrary files via a symlink attack on temporary policy files that end in a .cpp extension, which are set world-writable.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
checkpoint firewall-1 4.1 |
||
checkpoint firewall-1 3.0 |
||
checkpoint firewall-1 4.0 |