CVE-2004-1473

Sažetak

Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 allow remote attackers to bypass filtering and determine whether the device is running services such as tftpd, snmpd, or isakmp via a UDP port scan with a source port of UDP 53.

Reference

http://marc.info/?l=bugtraq&m=109588376426070&w=2
http://secunia.com/advisories/12635
http://securityresponse.symantec.com/avcenter/security/Content/2004.09.22.html
http://www.kb.cert.org/vuls/id/329230
http://www.osvdb.org/10205
http://www.securityfocus.com/bid/11237
https://exchange.xforce.ibmcloud.com/vulnerabilities/17470

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

11-07-2017 - 01:31

Objavljeno

31-12-2004 - 05:00