← CVECheck
HomeVulnerabilities

CVE-2000-1037 — HIGH severity vulnerability (Check Point Firewall-1 session agent 3.0 through 4.1 generat)

Check Point Firewall-1 session agent 3.0 through 4.1 generates different error messages for invalid user names versus invalid passwords, which allows remote attackers to determine valid usernames and guess a password via a brute force attack.

CVE IDCVE-2000-1037
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2000-12-11
Last modified2026-04-16
DescriptionCheck Point Firewall-1 session agent 3.0 through 4.1 generates different error messages for invalid user names versus invalid passwords, which allows remote attackers to determine valid usernames and guess a password via a brute force attack.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →