See also

CHECKPOINT : FireWall-1 NG R54

CHECKPOINT : Firewall-1 NG

Name: CHECKPOINT : Firewall-1 4.1

7!	TCP RST packets spoofing updated since 21.04.2004
		By sending spoofed RST it's possible to terminate established TCP connection. unlike TPC hijacking attacks there is no need for exact TCP sequence number, and number can be any number from handshaked TCP window. It significantly increases attack efficiency. In NetBSD sequence number for RST is not checked at all, it makes it possible to terminate session with single packet.
7!	Checkpoint Firewall-1 format string bugs
		Format string bugs in HTTP Application Intelligence component.
	Firewall-1 usernames detection
		PKI aggressive mode replies are different for existing and non-existing usernames.
	DoS against Windows and other systems updated since 20.05.2000
		A number of fragmented packet cause host to freeze during the attack.
	Обход требований защиты в FW-1 (protection bypass)
6!	Проблема CONNECT в Checkpoint Firewall-1 (protection bypass)
	Переролнение буфера в VPN-1/FireWall-1 Management Servers (buffer overflow)
6!	Символьные линки в Check Point (symbolic links)
6!	Обход checkpoint через RDP-пакеты (protection bypass) updated since 10.07.2001
	DoS против Firewall-1
	Дырка в Firewall-1 (FASTMODE bug)
	Многочисленные уязвимости в Firewall-1