Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1473

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-1473
Last Modified 05 Sep 2008 04:41:29
Published 31 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1473

Summary

Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 allow remote attackers to bypass filtering and determine whether the device is running services such as tftpd, snmpd, or isakmp via a UDP port scan with a source port of UDP 53.

Vulnerable Systems


References

CERT-VN - VU#329230

XF - symantec-udp-obtain-info(17470)

CONFIRM - http://securityresponse.symantec.com/avcenter/security/Content/2004.09.22.html

BID - 11237

BUGTRAQ - 20040922 Multiple Vulnerabilities in Symantec Enterprise Firewall/Gateway Security Products

OSVDB - 10205

SECUNIA - 12635


Last Updated: 27 May 2016 10:39:02