Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0593

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-0593
Last Modified 05 Sep 2008 04:38:50
Published 28 Sep 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0593

Summary

Sygate Enforcer 3.5MR1 and earlier passes broadcast traffic before authentication, which could allow remote attackers to bypass filtering rules.

Vulnerable Systems

Application

  • Sygate Technologies Enforcer 3.5mr1

  • Sygate Technologies Secure Enterprise 3.0

  • Sygate Technologies Secure Enterprise 3.5


References

XF - sygate-enforcer-filter-bypass(16948)

MISC - http://www.corsaire.com/advisories/c031120-003.txt

BID - 10908

BUGTRAQ - 20040810 Corsaire Security Advisory - Sygate Enforcer unauthenticated broadcast issue


Last Updated: 27 May 2016 10:38:40