Vulnerability Description
Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 allow remote attackers to bypass filtering and determine whether the device is running services such as tftpd, snmpd, or isakmp via a UDP port scan with a source port of UDP 53.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Firewall Vpn Appliance 100 | All versions |
| Symantec | Firewall Vpn Appliance 200 | All versions |
| Symantec | Firewall Vpn Appliance 200R | All versions |
| Symantec | Gateway Security 320 | All versions |
| Symantec | Gateway Security 360 | All versions |
| Symantec | Gateway Security 360R | All versions |
| Symantec | Nexland Isb Soho Firewall Appliance | All versions |
| Symantec | Nexland Pro100 Firewall Appliance | All versions |
| Symantec | Nexland Pro400 Firewall Appliance | All versions |
| Symantec | Nexland Pro800 Firewall Appliance | All versions |
| Symantec | Nexland Pro800Turbo Firewall Appliance | All versions |
| Symantec | Nexland Wavebase Firewall Appliance | All versions |
References
- http://marc.info/?l=bugtraq&m=109588376426070&w=2
- http://secunia.com/advisories/12635
- http://securityresponse.symantec.com/avcenter/security/Content/2004.09.22.htmlPatchVendor Advisory
- http://www.kb.cert.org/vuls/id/329230PatchThird Party AdvisoryUS Government Resource
- http://www.osvdb.org/10205
- http://www.securityfocus.com/bid/11237
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17470
- http://marc.info/?l=bugtraq&m=109588376426070&w=2
- http://secunia.com/advisories/12635
- http://securityresponse.symantec.com/avcenter/security/Content/2004.09.22.htmlPatchVendor Advisory
- http://www.kb.cert.org/vuls/id/329230PatchThird Party AdvisoryUS Government Resource
- http://www.osvdb.org/10205
- http://www.securityfocus.com/bid/11237
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17470
FAQ
What is CVE-2004-1473?
CVE-2004-1473 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 allow remote attackers to bypass filteri...
How severe is CVE-2004-1473?
CVE-2004-1473 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-1473?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Firewall Vpn Appliance 100, Symantec Firewall Vpn Appliance 200, Symantec Firewall Vpn Appliance 200R, Symantec Gateway Security 320, Symantec Gateway Security 360.