CVE-2002-0309
Summary
| CVE | CVE-2002-0309 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2002-05-31 04:00:00 UTC |
| Updated | 2016-10-18 02:18:00 UTC |
| Description | SMTP proxy in Symantec Enterprise Firewall (SEF) 6.5.x includes the firewall's physical interface name and address in an SMTP protocol exchange when NAT translation is made to an address other than the firewall, which could allow remote attackers to determine certain firewall configuration information. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Symantec | Enterprise Firewall | 6.5.2 | All | All | All |
| Application | Symantec | Enterprise Firewall | 6.5.2 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| 'Symantec Enterprise Firewall (SEF) SMTP proxy inconsistencies' - MARC | BUGTRAQ | marc.info | |
| Symantec Enterprise Firewall SMTP Proxy Information Leak Vulnerability | BID | www.securityfocus.com | |
| Symantec Security Response Advisory - Symantec Enterprise Firewall SMTP Proxy Issues | CONFIRM | securityresponse.symantec.com | |
| 'Symantec Enterprise Firewall (SEF) SMTP proxy inconsistencies' - MARC | BUGTRAQ | marc.info | |
| ISS X-Force Database: sef-smtp-proxy-information (8251): Symantec Enterprise Firewall (SEF) SMTP proxy reveals firewall configuration information | XF | www.iss.net | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.