1. CVE-Search
  2. CVE-2004-1473
ID CVE-2004-1473
Summary Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 allow remote attackers to bypass filtering and determine whether the device is running services such as tftpd, snmpd, or isakmp via a UDP port scan with a source port of UDP 53.
References
Vulnerable Configurations
  • cpe:2.3:h:symantec:firewall_vpn_appliance_100:*:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:firewall_vpn_appliance_100:*:*:*:*:*:*:*:*
  • cpe:2.3:h:symantec:firewall_vpn_appliance_200:*:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:firewall_vpn_appliance_200:*:*:*:*:*:*:*:*
  • cpe:2.3:h:symantec:firewall_vpn_appliance_200r:*:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:firewall_vpn_appliance_200r:*:*:*:*:*:*:*:*
  • cpe:2.3:h:symantec:gateway_security_320:*:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:gateway_security_320:*:*:*:*:*:*:*:*
  • cpe:2.3:h:symantec:gateway_security_360:*:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:gateway_security_360:*:*:*:*:*:*:*:*
  • cpe:2.3:h:symantec:gateway_security_360r:*:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:gateway_security_360r:*:*:*:*:*:*:*:*
  • cpe:2.3:h:symantec:nexland_isb_soho_firewall_appliance:*:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:nexland_isb_soho_firewall_appliance:*:*:*:*:*:*:*:*
  • cpe:2.3:h:symantec:nexland_pro100_firewall_appliance:*:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:nexland_pro100_firewall_appliance:*:*:*:*:*:*:*:*
  • cpe:2.3:h:symantec:nexland_pro400_firewall_appliance:*:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:nexland_pro400_firewall_appliance:*:*:*:*:*:*:*:*
  • cpe:2.3:h:symantec:nexland_pro800_firewall_appliance:*:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:nexland_pro800_firewall_appliance:*:*:*:*:*:*:*:*
  • cpe:2.3:h:symantec:nexland_pro800turbo_firewall_appliance:*:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:nexland_pro800turbo_firewall_appliance:*:*:*:*:*:*:*:*
  • cpe:2.3:h:symantec:nexland_wavebase_firewall_appliance:*:*:*:*:*:*:*:*
    cpe:2.3:h:symantec:nexland_wavebase_firewall_appliance:*:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 11-07-2017 - 01:31)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:N/A:N
refmap via4
bid 11237
bugtraq 20040922 Multiple Vulnerabilities in Symantec Enterprise Firewall/Gateway Security Products
cert-vn VU#329230
confirm http://securityresponse.symantec.com/avcenter/security/Content/2004.09.22.html
osvdb 10205
secunia 12635
xf symantec-udp-obtain-info(17470)
Last major update 11-07-2017 - 01:31
Published 31-12-2004 - 05:00
Last modified 11-07-2017 - 01:31
Back to Top