Check Point FireWall-1/VPN-1 Management Station Escalation
Remote / Network Access
Loss of Integrity
Check Point VPN-1/FireWall-1 contain a flaw that may allow authenticated (but limited) administrators gain elevated privileges. The issue is due to a format string bug in the management station. If an attacker supplies a specially crafted string they may be able to execute arbitrary code on the remote operating system.
Upgrade to version 4.1 SP5 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.