Vulnerability Description
Symantec Firewall/VPN Appliance 100 through 200R hardcodes the administrator's MAC address inside the firewall's configuration, which allows remote attackers to spoof the administrator's MAC address and perform an ARP poisoning man-in-the-middle attack to obtain the administrator's password.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Firewall Vpn Appliance 100 | All versions |
| Symantec | Firewall Vpn Appliance 200 | All versions |
| Symantec | Firewall Vpn Appliance 200R | All versions |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-10/0314.html
- http://archives.neohapsis.com/archives/bugtraq/2002-10/0329.html
- http://www.iss.net/security_center/static/10442.php
- http://archives.neohapsis.com/archives/bugtraq/2002-10/0314.html
- http://archives.neohapsis.com/archives/bugtraq/2002-10/0329.html
- http://www.iss.net/security_center/static/10442.php
FAQ
What is CVE-2002-1937?
CVE-2002-1937 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Symantec Firewall/VPN Appliance 100 through 200R hardcodes the administrator's MAC address inside the firewall's configuration, which allows remote attackers to spoof the administrator's MAC address a...
How severe is CVE-2002-1937?
CVE-2002-1937 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-1937?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Firewall Vpn Appliance 100, Symantec Firewall Vpn Appliance 200, Symantec Firewall Vpn Appliance 200R.