| Summary | Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 allow remote attackers to bypass filtering and determine whether the device is running services such as tftpd, snmpd, or isakmp via a UDP port scan with a source port of UDP 53. |
|---|---|
| Publication Date | Dec. 31, 2004, 2 p.m. |
| Registration Date | Jan. 29, 2021, 6:01 p.m. |
| Last Update | July 11, 2017, 10:31 a.m. |
| CVSS2.0 : MEDIUM | |
| Score | 5.0 |
|---|---|
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
| 攻撃元区分(AV) | ネットワーク |
| 攻撃条件の複雑さ(AC) | 低 |
| 攻撃前の認証要否(Au) | 不要 |
| 機密性への影響(C) | 低 |
| 完全性への影響(I) | なし |
| 可用性への影響(A) | なし |
| Get all privileges. | いいえ |
| Get user privileges | いいえ |
| Get other privileges | いいえ |
| User operation required | いいえ |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:h:symantec:firewall_vpn_appliance_100:*:*:*:*:*:*:*:* | |||||
| cpe:2.3:h:symantec:firewall_vpn_appliance_200:*:*:*:*:*:*:*:* | |||||
| cpe:2.3:h:symantec:firewall_vpn_appliance_200r:*:*:*:*:*:*:*:* | |||||
| cpe:2.3:h:symantec:gateway_security_320:*:*:*:*:*:*:*:* | |||||
| cpe:2.3:h:symantec:gateway_security_360:*:*:*:*:*:*:*:* | |||||
| cpe:2.3:h:symantec:gateway_security_360r:*:*:*:*:*:*:*:* | |||||
| cpe:2.3:h:symantec:nexland_isb_soho_firewall_appliance:*:*:*:*:*:*:*:* | |||||
| cpe:2.3:h:symantec:nexland_pro100_firewall_appliance:*:*:*:*:*:*:*:* | |||||
| cpe:2.3:h:symantec:nexland_pro400_firewall_appliance:*:*:*:*:*:*:*:* | |||||
| cpe:2.3:h:symantec:nexland_pro800_firewall_appliance:*:*:*:*:*:*:*:* | |||||
| cpe:2.3:h:symantec:nexland_pro800turbo_firewall_appliance:*:*:*:*:*:*:*:* | |||||
| cpe:2.3:h:symantec:nexland_wavebase_firewall_appliance:*:*:*:*:*:*:*:* | |||||