Steph, The term malicious administrator refers to a valid FireWall policy admistrator. It is directed at the Enterprise Management Module from the gui-installed PC.
This is a problem only for those PC's because the problem, as stated is in the authorization module, which would not be referenced until the validity of the administrator's incoming ip is verified. Cheers, CT Stephane Rozes wrote: > Hi, > > When I read the Checkpoint alert on "GUI Buffer Overflow" > (http://www.checkpoint.com/techsupport/alerts/buffer_overflow.html), I have > some understanding problem. Checkpoint alert talks about "A malicious > administrator can exploit ...". > > What do they mean by "malicious administrator" ? Is a Fw-1 administrator > with read/write access on the Management Server ? Or only the system > administrator of the computer where the GUI is installed ? > > Thank you for your help > > St�phane Rozes > > ================================================================================ > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================================================ ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
