Lucene search
HistoryDec 31, 2004 - 5:00 a.m.
CVE-2004-1474
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.7 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.4%
Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 uses a default read/write SNMP community string, which allows remote attackers to alter the firewall’s configuration file.
Affected configurations
Node
symantecfirewall_vpn_appliance_100
ORsymantecfirewall_vpn_appliance_200
ORsymantecfirewall_vpn_appliance_200r
ORsymantecgateway_security_320
ORsymantecgateway_security_360
ORsymantecgateway_security_360r
ORsymantecnexland_isb_soho_firewall_appliance
ORsymantecnexland_pro100_firewall_appliance
ORsymantecnexland_pro400_firewall_appliance
ORsymantecnexland_pro800_firewall_appliance
ORsymantecnexland_pro800turbo_firewall_appliance
ORsymantecnexland_wavebase_firewall_appliance
Related
cve
cve
CVE-2004-1474
2005-02-13 05:00:00
cvelist
cvelist
CVE-2004-1474
2005-02-13 05:00:00
nessus
nessus
SNMP Agent Default Community Names
2002-11-25 00:00:00
openvas
openvas
Report default community names of the SNMP Agent
2014-03-12 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.7 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.4%
Related for NVD:CVE-2004-1474