Symantec Norton Personal Firewall 2002 Portscan Protection Bypass

2002-04-16T13:31:09
ID OSVDB:6256
Type osvdb
Reporter Alfonso Fiore(afiore@secure-edge.com)
Modified 2002-04-16T13:31:09

Description

Vulnerability Description

Symantec Norton Personal Firewall contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered due to the handling of portscans, which may allow a remote attacker to bypass the portscan protection using other scan methods like SYN/FIN scans and obtain port information, resulting in a loss of confidentiality.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Symantec has released a patch to address this vulnerability.

Short Description

Symantec Norton Personal Firewall contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered due to the handling of portscans, which may allow a remote attacker to bypass the portscan protection using other scan methods like SYN/FIN scans and obtain port information, resulting in a loss of confidentiality.

References:

Vendor URL: http://www.symantec.com/index.htm Vendor Specific Advisory URL Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2002-04/0174.html ISS X-Force ID: 8859 Bugtraq ID: 4521