Description
Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 allow remote attackers to cause a denial of service (device freeze) via a fast UDP port scan on the WAN interface.
Affected products
- Symantec / firewall_vpn_appliance_100
- Symantec / firewall_vpn_appliance_200
- Symantec / firewall_vpn_appliance_200r
- Symantec / gateway_security320 – 320
- Symantec / gateway_security360 – 360
- Symantec / gateway_security360r – 360r
- Symantec / nexland_isb_soho_firewall_appliance
- Symantec / nexland_pro100_firewall_appliance
- Symantec / nexland_pro400_firewall_appliance
- Symantec / nexland_pro800_firewall_appliance
- Symantec / nexland_pro800turbo_firewall_appliance
- Symantec / nexland_wavebase_firewall_appliance
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/12635
- MISChttp://securityresponse.symantec.com/avcenter/security/Content/2004.09.22.html
- MAILING_LISThttp://marc.info/?l=bugtraq&m=109588376426070&w=2
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/17469
- MISChttp://www.kb.cert.org/vuls/id/441078
- MISChttp://www.securityfocus.com/bid/11237
- MISChttp://www.osvdb.org/10204