Lucene search

[email protected]CVE-2002-2294

HistoryOct 18, 2007 - 10:00 a.m.

CVE-2002-2294

2007-10-1810:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve

buffer overflow

symantec

raptor firewall

denial of service

nvd

security vulnerability

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

46.0%

JSON

Multiple buffer overflows in Symantec Raptor Firewall 6.5 and 6.5.3, Enterprise Firewall 6.5.2 and 7.0, VelociRaptor 500/700/1000 and 1100/1200/1300, and Gateway Security 5110/5200/5300 allow remote attackers to cause a denial of service (service termination) via (1) malformed RealAudio (rad) packets that are not properly handled by the RealAudio Proxy, or (2) crafted packets to the statistics service (statsd).

Affected configurations

NVD

Node

symantecgateway_securityMatch5110_1.0

symantecgateway_securityMatch5200_1.0

symantecgateway_securityMatch5300

AND

symantecenterprise_firewallMatch6.5.2windows_2000_nt

symantecenterprise_firewallMatch7.0solaris

symantecenterprise_firewallMatch7.0windows_2000_nt

symantecraptor_firewallMatch6.5windows_nt

symantecraptor_firewallMatch6.5.3solaris

symantecvelociraptorMatchmodel_500

symantecvelociraptorMatchmodel_700

symantecvelociraptorMatchmodel_1000

symantecvelociraptorMatchmodel_1100

symantecvelociraptorMatchmodel_1200

symantecvelociraptorMatchmodel_1300

CPENameOperatorVersion
symantec:enterprise_firewallsymantec enterprise firewalleq6.5.2
symantec:enterprise_firewallsymantec enterprise firewalleq7.0
symantec:raptor_firewallsymantec raptor firewalleq6.5
symantec:raptor_firewallsymantec raptor firewalleq6.5.3
symantec:velociraptorsymantec velociraptoreqmodel_500
symantec:velociraptorsymantec velociraptoreqmodel_700
symantec:velociraptorsymantec velociraptoreqmodel_1000
symantec:velociraptorsymantec velociraptoreqmodel_1100
symantec:velociraptorsymantec velociraptoreqmodel_1200
symantec:velociraptorsymantec velociraptoreqmodel_1300

CPE	Name	Operator	Version
symantec:enterprise_firewall	symantec enterprise firewall	eq	6.5.2
symantec:enterprise_firewall	symantec enterprise firewall	eq	7.0
symantec:raptor_firewall	symantec raptor firewall	eq	6.5
symantec:raptor_firewall	symantec raptor firewall	eq	6.5.3
symantec:velociraptor	symantec velociraptor	eq	model_500
symantec:velociraptor	symantec velociraptor	eq	model_700
symantec:velociraptor	symantec velociraptor	eq	model_1000
symantec:velociraptor	symantec velociraptor	eq	model_1100
symantec:velociraptor	symantec velociraptor	eq	model_1200
symantec:velociraptor	symantec velociraptor	eq	model_1300

References

www.securityfocus.com/bid/6389

www.symantec.com/avcenter/security/Content/2002.12.12.html

exchange.xforce.ibmcloud.com/vulnerabilities/10862

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

46.0%

JSON

Related for CVE-2002-2294

nvd1 cvelist1