Lucene search

[email protected]CVE-2004-1473

HistoryFeb 13, 2005 - 5:00 a.m.

CVE-2004-1473

2005-02-1305:00:00

[email protected]

web.nvd.nist.gov

symantec

enterprise

firewall

vpn

appliances

vulnerability

bypass

udp

port scan

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

57.6%

JSON

Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 allow remote attackers to bypass filtering and determine whether the device is running services such as tftpd, snmpd, or isakmp via a UDP port scan with a source port of UDP 53.

Affected configurations

NVD

Node

symantecfirewall_vpn_appliance_100

symantecfirewall_vpn_appliance_200

symantecfirewall_vpn_appliance_200r

symantecgateway_security_320

symantecgateway_security_360

symantecgateway_security_360r

symantecnexland_isb_soho_firewall_appliance

symantecnexland_pro100_firewall_appliance

symantecnexland_pro400_firewall_appliance

symantecnexland_pro800_firewall_appliance

symantecnexland_pro800turbo_firewall_appliance

symantecnexland_wavebase_firewall_appliance

CPENameOperatorVersion
symantec:firewall_vpn_appliance_100symantec firewall vpn appliance 100eq*
symantec:firewall_vpn_appliance_200symantec firewall vpn appliance 200eq*
symantec:firewall_vpn_appliance_200rsymantec firewall vpn appliance 200req*
symantec:gateway_security_320symantec gateway security 320eq*
symantec:gateway_security_360symantec gateway security 360eq*
symantec:gateway_security_360rsymantec gateway security 360req*
symantec:nexland_isb_soho_firewall_appliancesymantec nexland isb soho firewall applianceeq*
symantec:nexland_pro100_firewall_appliancesymantec nexland pro100 firewall applianceeq*
symantec:nexland_pro400_firewall_appliancesymantec nexland pro400 firewall applianceeq*
symantec:nexland_pro800_firewall_appliancesymantec nexland pro800 firewall applianceeq*

CPE	Name	Operator	Version
symantec:firewall_vpn_appliance_100	symantec firewall vpn appliance 100	eq	*
symantec:firewall_vpn_appliance_200	symantec firewall vpn appliance 200	eq	*
symantec:firewall_vpn_appliance_200r	symantec firewall vpn appliance 200r	eq	*
symantec:gateway_security_320	symantec gateway security 320	eq	*
symantec:gateway_security_360	symantec gateway security 360	eq	*
symantec:gateway_security_360r	symantec gateway security 360r	eq	*
symantec:nexland_isb_soho_firewall_appliance	symantec nexland isb soho firewall appliance	eq	*
symantec:nexland_pro100_firewall_appliance	symantec nexland pro100 firewall appliance	eq	*
symantec:nexland_pro400_firewall_appliance	symantec nexland pro400 firewall appliance	eq	*
symantec:nexland_pro800_firewall_appliance	symantec nexland pro800 firewall appliance	eq	*

Rows per page:

1-10 of 121

References

marc.info/?l=bugtraq&m=109588376426070&w=2

secunia.com/advisories/12635

securityresponse.symantec.com/avcenter/security/Content/2004.09.22.html

www.kb.cert.org/vuls/id/329230

www.osvdb.org/10205

www.securityfocus.com/bid/11237

exchange.xforce.ibmcloud.com/vulnerabilities/17470

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

57.6%

JSON

Related for CVE-2004-1473

nvd1 cvelist1 f52 nessus1