Vulnerabilities > CVE-2002-0990 - Denial of Service vulnerability in Multiple Symantec HTTP Proxy

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

symantec

NVD

Published: 2002-10-28

Updated: 2016-10-18

Summary

The web proxy component in Symantec Enterprise Firewall (SEF) 6.5.2 through 7.0, Raptor Firewall 6.5 and 6.5.3, VelociRaptor, and Symantec Gateway Security allow remote attackers to cause a denial of service (connection resource exhaustion) via multiple connection requests to domains whose DNS server is unresponsive or does not exist, which generates a long timeout.

Vulnerable Configurations

Part	Description	Count
Application	Symantec Symantec Enterprise Firewall 6.5.2 Symantec Enterprise Firewall 7.0 Symantec Raptor Firewall 6.5 Symantec Raptor Firewall 6.5.3 Symantec Velociraptor 500 Symantec Velociraptor 700 Symantec Velociraptor 1000 Symantec Velociraptor 1100 Symantec Velociraptor 1200 Symantec Velociraptor 1300	11
Hardware	Symantec Symantec Gateway Security 5110 Symantec Gateway Security 5200 Symantec Gateway Security 5300	3

Summary

Vulnerable Configurations

References