Short Name |
DNS:QUERY:SYMC-DNS-CACHE |
---|---|
Severity |
Minor |
Recommended |
No |
Category |
DNS |
Keywords |
Symantec Gateway Products DNS Cache Poisoning |
Release Date |
2013/05/23 |
Update Number |
2266 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability in the way the DNS proxy component of Symantec Gateway products processes and caches DNS responses. A successful attack can lead to man-in-the-middle attacks, or spoofing attacks, or information gathering attacks, etc.
A remote DNS cache poisoning vulnerability affects Symantec Gateway Security. The underlying issue causing this vulnerability is currently unknown. An attacker may leverage this issue to manipulate cache data, potentially facilitating man-in-the-middle, site impersonation, or denial of service attacks.