CVE-2000-0116

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Jan 29, 2000
Updated: Nov 20, 2024

Summary

CVE-2000-0116 is a vulnerability affecting Firewall-1, where script tags are not adequately filtered. An attacker can exploit this issue by inserting an extra "<" character before the "SCRIPT" tag, allowing malicious scripts to bypass the "Strip Script Tags" restriction and gain unauthorized access to a system. This flaw can potentially lead to remote code execution, posing a significant security risk. Organizations using Firewall-1 are advised to update their software and properly configure the script tag filtering to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • CheckPoint Firewall-1

Affected Vendors

  • Check Point Software Technologies Ltd.