Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Enterprise_firewall
(Symantec)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 15 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2007-08-18 | CVE-2007-4422 | The login interface in Symantec Enterprise Firewall 6.x, when a VPN with pre-shared key (PSK) authentication is enabled, generates different responses depending on whether or not a username is valid, which allows remote attackers to enumerate valid usernames. | Enterprise_firewall | N/A | ||
| 2006-05-11 | CVE-2006-2341 | The HTTP proxy in Symantec Gateway Security 5000 Series 2.0.1 and 3.0, and Enterprise Firewall 8.0, when NAT is being used, allows remote attackers to determine internal IP addresses by using malformed HTTP requests, as demonstrated using a get request without a space separating the URI. | Enterprise_firewall, Gateway_security | N/A | ||
| 2005-11-22 | CVE-2005-3768 | Buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation in Symantec Dynamic VPN Services, as used in Enterprise Firewall, Gateway Security, and Firewall /VPN Appliance products, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. | Enterprise_firewall, Firewall_vpn_appliance_100, Firewall_vpn_appliance_200, Gateway_security_300, Gateway_security_400, Gateway_security_5000_series, Gateway_security_5100, Gateway_security_5300, Gateway_security_5310, Gateway_security_5400 | N/A | ||
| 2005-05-02 | CVE-2005-0817 | Unknown vulnerability in the DNSd proxy, as used in Symantec Gateway Security 5400 2.x and 5300 1.x, Enterprise Firewall 7.0.x and 8.x, and VelociRaptor 1100/1200/1300 1.5, allows remote attackers to poison the DNS cache and redirect users to malicious sites. | Enterprise_firewall, Gateway_security_5300, Gateway_security_5400, Velociraptor | N/A | ||
| 2004-06-15 | CVE-2004-1754 | The DNS proxy (DNSd) for multiple Symantec Gateway Security products allows remote attackers to poison the DNS cache via a malicious DNS server query response that contains authoritative or additional records. | Enterprise_firewall, Gateway_security | N/A |