Signature Detail

DNS: Symantec Firewall Multiple Vulnerabilities

Multiple vulnerabilities exist in the Symantec Enterprise Firewall/VPN Appliance and Symantec Gateway Security products. These products contain firmware flaws which result in improper enforcement of controls relative to incoming UDP traffic. These vulnerabilities enable an attacker to view and modify the firewall rules, and additionally to create a denial of service condition. The target system will not exhibit any unusual behaviour when the vulnerability is exploited for information disclosure. If these vulnerabilities are exploited to alter the configuration of the vulnerable system, this will result in a behavior change dependent on the new configuration settings. Alternatively, in the case of the denial-of-service attack previously described, the target system will become unresponsive until restarted.

References

• CVE: CVE-2004-0369