Vulnerabilities > CVE-2004-2252 - Information Exposure Through Discrepancy vulnerability in Sophos Astaro Security Linux
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
The firewall in Astaro Security Linux before 4.024 sends responses to SYN-FIN packets, which makes it easier for remote attackers to obtain information about the system and construct specialized attacks.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 1 |
Common Weakness Enumeration (CWE)
References
- http://secunia.com/advisories/13089
- http://secunia.com/advisories/13089
- http://securitytracker.com/id?1012065
- http://securitytracker.com/id?1012065
- http://www.astaro.org/showflat.php?Cat=&Number=51459&page=0&view=collapsed&sb=5&o=&fpart=1#51459
- http://www.astaro.org/showflat.php?Cat=&Number=51459&page=0&view=collapsed&sb=5&o=&fpart=1#51459
- http://www.osvdb.org/11407
- http://www.osvdb.org/11407
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17960
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17960