Vulnerability Description
FTP proxy in Symantec Raptor Firewall 6.5.3 and Enterprise 7.0 rewrites an FTP server's "FTP PORT" responses in a way that allows remote attackers to redirect FTP data connections to arbitrary ports, a variant of the "FTP bounce" vulnerability.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Enterprise Firewall | 6.5.2 |
| Symantec | Raptor Firewall | 6.5 |
| Symantec | Velociraptor | 1.x |
| Symantec | Gateway Security | 1.0 |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0166.htmlVendor Advisory
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0224.html
- http://securityresponse.symantec.com/avcenter/security/Content/2002.04.17.htmlPatchVendor Advisory
- http://www.iss.net/security_center/static/8847.phpPatchVendor Advisory
- http://www.securityfocus.com/bid/4522PatchVendor Advisory
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0166.htmlVendor Advisory
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0224.html
- http://securityresponse.symantec.com/avcenter/security/Content/2002.04.17.htmlPatchVendor Advisory
- http://www.iss.net/security_center/static/8847.phpPatchVendor Advisory
- http://www.securityfocus.com/bid/4522PatchVendor Advisory
FAQ
What is CVE-2002-0538?
CVE-2002-0538 is a vulnerability with a CVSS score of 7.5 (HIGH). FTP proxy in Symantec Raptor Firewall 6.5.3 and Enterprise 7.0 rewrites an FTP server's "FTP PORT" responses in a way that allows remote attackers to redirect FTP data connections to arbitrary ports, ...
How severe is CVE-2002-0538?
CVE-2002-0538 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0538?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Enterprise Firewall, Symantec Raptor Firewall, Symantec Velociraptor, Symantec Gateway Security.