Description
Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 uses a default read/write SNMP community string, which allows remote attackers to alter the firewall's configuration file.
Affected products
- Symantec / firewall_vpn_appliance_100
- Symantec / firewall_vpn_appliance_200
- Symantec / firewall_vpn_appliance_200r
- Symantec / gateway_security_320
- Symantec / gateway_security_360
- Symantec / gateway_security_360r
- Symantec / nexland_isb_soho_firewall_appliance
- Symantec / nexland_pro100_firewall_appliance
- Symantec / nexland_pro400_firewall_appliance
- Symantec / nexland_pro800_firewall_appliance
- Symantec / nexland_pro800turbo_firewall_appliance
- Symantec / nexland_wavebase_firewall_appliance
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/12635
- MISChttp://securityresponse.symantec.com/avcenter/security/Content/2004.09.22.html
- MISChttp://www.kb.cert.org/vuls/id/173910
- MAILING_LISThttp://marc.info/?l=bugtraq&m=109588376426070&w=2
- MISChttp://www.osvdb.org/10206
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/17471
- MISChttp://www.securityfocus.com/bid/11237