ID CVE-2002-1463
Summary Symantec Raptor Firewall 6.5 and 6.5.3, Enterprise Firewall 6.5.2 and 7.0, VelociRaptor Models 500/700/1000 and 1100/1200/1300, and Gateway Security 5110/5200/5300 generate easily predictable initial sequence numbers (ISN), which allows remote attackers to spoof connections.
References
Vulnerable Configurations
  • cpe:2.3:a:symantec:enterprise_firewall:6.5.2:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:enterprise_firewall:6.5.2:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:enterprise_firewall:7.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:enterprise_firewall:7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:raptor_firewall:6.5:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:raptor_firewall:6.5:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:raptor_firewall:6.5.3:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:raptor_firewall:6.5.3:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:velociraptor:model_500:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:velociraptor:model_500:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:velociraptor:model_700:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:velociraptor:model_700:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:velociraptor:model_1000:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:velociraptor:model_1000:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:velociraptor:model_1100:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:velociraptor:model_1100:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:velociraptor:model_1200:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:velociraptor:model_1200:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:velociraptor:model_1300:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:velociraptor:model_1300:*:*:*:*:*:*:*
  • cpe:2.3:h:symantec:gateway_security:5110:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:gateway_security:5110:*:*:*:*:*:*:*
  • cpe:2.3:h:symantec:gateway_security:5200:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:gateway_security:5200:*:*:*:*:*:*:*
  • cpe:2.3:h:symantec:gateway_security:5300:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:gateway_security:5300:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 10-10-2017 - 01:30)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 5387
bugtraq 20020802 Security Advisory: Raptor Firewall Weak ISN Vulnerability
confirm http://www.symantec.com/techsupp/bulletin/archive/firewall/082002firewall.html
osvdb 855
xf symantec-tcp-seq-predict(12836)
Last major update 10-10-2017 - 01:30
Published 09-06-2003 - 04:00
Last modified 10-10-2017 - 01:30
Back to Top