Vulnerabilities > CVE-2004-0375 - Remote Denial Of Service vulnerability in Symantec Client Firewall Products SYMNDIS.SYS Driver
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
SYMNDIS.SYS in Symantec Norton Internet Security 2003 and 2004, Norton Personal Firewall 2003 and 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 and 1.1 allow remote attackers to cause a denial of service (infinite loop) via a TCP packet with (1) SACK option or (2) Alternate Checksum Data option followed by a length of zero.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 10 |
Exploit-Db
description | Symantec Client Firewall Products 5 SYMNDIS.SYS Driver Remote Denial Of Service Vulnerability. CVE-2004-0375. Dos exploit for windows platform |
id | EDB-ID:23846 |
last seen | 2016-02-02 |
modified | 2004-03-18 |
published | 2004-03-18 |
reporter | eEye Digital Security Team |
source | https://www.exploit-db.com/download/23846/ |
title | Symantec Client Firewall Products 5 SYMNDIS.SYS Driver Remote Denial of Service Vulnerability |
Nessus
NASL family | Firewalls |
NASL id | TCP_OPTIONS_DOS.NASL |
description | The remote system appears vulnerable to an invalid Options field within a TCP packet. At least one vendor firewall (Symantec) has been reported prone to such a bug. An attacker, utilizing this flaw, would be able to remotely shut down the remote firewall (stopping all network-based transactions) by sending a single packet to any port. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 12216 |
published | 2004-04-26 |
reporter | This script is (C) 2004-2019 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/12216 |
title | Symantec Firewall Malformed TCP Packet Options Remote DoS |
code |
|
References
- http://marc.info/?l=bugtraq&m=108275582432246&w=2
- http://securitytracker.com/id?1009379
- http://securitytracker.com/id?1009380
- http://www.eeye.com/html/Research/Upcoming/20040309.html
- http://www.securityfocus.com/bid/9912
- http://www.symantec.com/avcenter/security/Content/2004.04.20.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15433
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15936