CVE-2001-1499

N/A Unknown

Published: December 31, 2001 Modified: April 16, 2026

Description

Check Point VPN-1 4.1SP4 using SecuRemote returns different error messages for valid and invalid users, with prompts that vary depending on the authentication method being used, which makes it easier for remote attackers to conduct brute force attacks.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://www.osvdb.org/20210

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/222366

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/222479

Source: cve@mitre.org

http://www.securityfocus.com/bid/3470

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/7343

Source: cve@mitre.org

http://www.osvdb.org/20210

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/222366

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/222479

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/3470

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/7343

Source: af854a3a-2127-422b-91ae-364da2661108

10 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

0.7%

72th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

checkpoint