Vulnerabilities > CVE-2002-0309 - Unspecified vulnerability in Symantec Enterprise Firewall 6.5.2

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

symantec

NVD

Published: 2002-05-31

Updated: 2016-10-18

Summary

SMTP proxy in Symantec Enterprise Firewall (SEF) 6.5.x includes the firewall's physical interface name and address in an SMTP protocol exchange when NAT translation is made to an address other than the firewall, which could allow remote attackers to determine certain firewall configuration information.

Vulnerable Configurations

Part	Description	Count
Application	Symantec Symantec Enterprise Firewall 6.5.2	1

References

http://marc.info/?l=bugtraq&m=101424307617060&w=2
http://marc.info/?l=bugtraq&m=101430810813853&w=2
http://securityresponse.symantec.com/avcenter/security/Content/2002.02.20.html
http://www.iss.net/security_center/static/8251.php
http://www.securityfocus.com/bid/4141