Описание
Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 allow remote attackers to bypass filtering and determine whether the device is running services such as tftpd, snmpd, or isakmp via a UDP port scan with a source port of UDP 53.
Ссылки
- PatchVendor Advisory
- PatchThird Party AdvisoryUS Government Resource
- PatchVendor Advisory
- PatchThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:h:symantec:firewall_vpn_appliance_100:*:*:*:*:*:*:*:*
cpe:2.3:h:symantec:firewall_vpn_appliance_200:*:*:*:*:*:*:*:*
cpe:2.3:h:symantec:firewall_vpn_appliance_200r:*:*:*:*:*:*:*:*
cpe:2.3:h:symantec:gateway_security_320:*:*:*:*:*:*:*:*
cpe:2.3:h:symantec:gateway_security_360:*:*:*:*:*:*:*:*
cpe:2.3:h:symantec:gateway_security_360r:*:*:*:*:*:*:*:*
cpe:2.3:h:symantec:nexland_isb_soho_firewall_appliance:*:*:*:*:*:*:*:*
cpe:2.3:h:symantec:nexland_pro100_firewall_appliance:*:*:*:*:*:*:*:*
cpe:2.3:h:symantec:nexland_pro400_firewall_appliance:*:*:*:*:*:*:*:*
cpe:2.3:h:symantec:nexland_pro800_firewall_appliance:*:*:*:*:*:*:*:*
cpe:2.3:h:symantec:nexland_pro800turbo_firewall_appliance:*:*:*:*:*:*:*:*
cpe:2.3:h:symantec:nexland_wavebase_firewall_appliance:*:*:*:*:*:*:*:*
EPSS
Процентиль: 82%
0.0188
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 allow remote attackers to bypass filtering and determine whether the device is running services such as tftpd, snmpd, or isakmp via a UDP port scan with a source port of UDP 53.
EPSS
Процентиль: 82%
0.0188
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other