CVE-2001-1431

medium

Check Point

CVSS v3 Base Score

5.0

AV:N/AC:L/Au:N/C:P/I:N/A:N

EPSS Score

0.8%

Exploitation probability in 30 days

Top 27% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Confidentiality

Integrity

None

Availability

None

Published: October 8, 2001 (8984 days ago)

Last Modified: April 16, 2026

Vendor: Check Point

Source: NVD

Description

Nokia Firewall Appliances running IPSO 3.3 and VPN-1/FireWall-1 4.1 Service Pack 3, IPSO 3.4 and VPN-1/FireWall-1 4.1 Service Pack 4, and IPSO 3.4 or IPSO 3.4.1 and VPN-1/FireWall-1 4.1 Service Pack 5, when SYN Defender is configured in Active Gateway mode, does not properly rewrite the third packet of a TCP three-way handshake to use the NAT IP address, which allows remote attackers to gain sensitive information.

CWE

NVD-CWE-Other

Affected Products

checkpoint firewall-1checkpoint vpn-1nokia firewall appliance

References

🔗 www.kb.cert.org 🔗 exchange.xforce.ibmcloud.com 🔗 www.kb.cert.org 🔗 exchange.xforce.ibmcloud.com

CVE-2001-1431

Vulnerability Report

Description

CWE

Affected Products

References