Vulnerabilities > Symantec
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-03-31 | CVE-2002-1540 | Unspecified vulnerability in Symantec Norton Antivirus Corporate7.5/Corporate7.51/Corporate7.6 The client for Symantec Norton AntiVirus Corporate Edition 7.5.x before 7.5.1 Build 62 and 7.6.x before 7.6.1 Build 35a runs winhlp32 with raised privileges, which allows local users to gain privileges by using certain features of winhlp32. | 7.2 |
| 2003-03-31 | CVE-2002-1535 | Information Disclosure vulnerability in Symantec Enterprise Firewall and Raptor Firewall Secure Webserver 1.1 in Raptor 6.5 and Symantec Enterprise Firewall 6.5.2 allows remote attackers to identify IP addresses of hosts on the internal network via a CONNECT request, which generates different error messages if the host is present. | 5.0 |
| 2002-12-31 | CVE-2002-2397 | Improper Authentication vulnerability in Symantec Sygate Personal Firewall 5.0 Sygate personal firewall 5.0 could allow remote attackers to bypass firewall filters via spoofed (1) source IP address of 127.0.0.1 or (2) network address of 127.0.0.0. | 10.0 |
| 2002-12-31 | CVE-2002-2336 | Configuration vulnerability in Symantec Norton Personal Firewall 2002 Norton Personal Firewall 2002 4.0, when configured to automatically block attacks, allows remote attackers to block IP addresses and cause a denial of service via spoofed packets. | 4.3 |
| 2002-12-31 | CVE-2002-2317 | Information Exposure vulnerability in Symantec Velociraptor 1.0 Memory leak in the (1) httpd, (2) nntpd, and (3) vpn driver in VelociRaptor 1.0 allows remote attackers to cause a denial of service (memory consumption) via an unknown method. | 7.8 |
| 2002-12-31 | CVE-2002-2294 | Buffer Errors vulnerability in Symantec Enterprise Firewall, Raptor Firewall and Velociraptor Multiple buffer overflows in Symantec Raptor Firewall 6.5 and 6.5.3, Enterprise Firewall 6.5.2 and 7.0, VelociRaptor 500/700/1000 and 1100/1200/1300, and Gateway Security 5110/5200/5300 allow remote attackers to cause a denial of service (service termination) via (1) malformed RealAudio (rad) packets that are not properly handled by the RealAudio Proxy, or (2) crafted packets to the statistics service (statsd). | 5.0 |
| 2002-12-31 | CVE-2002-2281 | Unspecified vulnerability in Symantec Java Symantec Java! JIT (Just-In-Time) Compiler for Netscape Communicator 4.0 through 4.8 allows remote attackers to execute arbitrary Java commands via an applet that uses a jump call, which is not correctly compiled by the JIT compiler. | 10.0 |
| 2002-12-31 | CVE-2002-2206 | Local Denial of Service vulnerability in Symantec Norton Antivirus 2001 The POP3 proxy service (POPROXY.EXE) in Norton AntiVirus 2001 allows local users to cause a denial of service (CPU consumption and crash) via a long username with multiple /localhost entries. | 7.8 |
| 2002-12-31 | CVE-2002-1937 | Remote Security vulnerability in Symantec products Symantec Firewall/VPN Appliance 100 through 200R hardcodes the administrator's MAC address inside the firewall's configuration, which allows remote attackers to spoof the administrator's MAC address and perform an ARP poisoning man-in-the-middle attack to obtain the administrator's password. | 5.0 |
| 2002-12-31 | CVE-2002-1779 | Unspecified vulnerability in Symantec Norton Personal Firewall 2002 The "block fragmented IP Packets" option in Symantec Norton Personal Firewall 2002 (NPW) does not properly protect against certain attacks on Windows vulnerabilities such as jolt2 (CVE-2000-0305). | 7.5 |