CVE-2000-0582

Check Point FireWall-1 4.0-4.1 - Denial of Service via Invalid SMTP Commands

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0582. PoCs published by SecureXpert Labs.

AI-analyzed exploit summary The exploit demonstrates a DoS vulnerability in Check Point Firewall-1 SMTP Security Server by sending a stream of binary zeros to the SMTP port, causing 100% CPU utilization. This is achieved using a simple netcat command to flood the target with invalid SMTP data.

Description

Check Point FireWall-1 4.0 and 4.1 allows remote attackers to cause a denial of service by sending a stream of invalid commands (such as binary zeros) to the SMTP Security Server proxy.

Exploits (1)

exploitdb WORKING POC VERIFIED
by SecureXpert Labs · textdoswindows
https://www.exploit-db.com/exploits/20049

The exploit demonstrates a DoS vulnerability in Check Point Firewall-1 SMTP Security Server by sending a stream of binary zeros to the SMTP port, causing 100% CPU utilization. This is achieved using a simple netcat command to flood the target with invalid SMTP data.

Classification
Working Poc 100%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Check Point Firewall-1 4.0 and 4.1 on Windows NT
No auth needed
Prerequisites: Network access to the target SMTP port (25)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/1438
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1416

Scores

EPSS 0.0741
EPSS Percentile 93.7%

Details

Status published
Products (2)
checkpoint/firewall-1 4.0
checkpoint/firewall-1 4.1
Published Jun 30, 2000
Tracked Since Feb 18, 2026