CVE-2004-1473
First published: Fri Dec 31 2004(Updated: )
Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 allow remote attackers to bypass filtering and determine whether the device is running services such as tftpd, snmpd, or isakmp via a UDP port scan with a source port of UDP 53.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Symantec Gateway Security 360 | ||
| Symantec Firewall VPN Appliance 200 | ||
| Symantec Nexland Wavebase Firewall Appliance | ||
| Symantec Gateway Security | ||
| Symantec Nexland Pro400 Firewall Appliance | ||
| Symantec Gateway Security 360 | ||
| Symantec Nexland Pro800Turbo Firewall Appliance | ||
| Symantec Nexland Pro800 Firewall Appliance | ||
| Symantec Nexland Pro100 Firewall Appliance | ||
| Symantec Firewall VPN Appliance 200R | ||
| Symantec Nexland ISB SOHO Firewall Appliance | ||
| Symantec Firewall VPN Appliance 100 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://securityresponse.symantec.com/avcenter/security/Content/2004.09.22.html
- http://www.kb.cert.org/vuls/id/329230
- http://www.securityfocus.com/bid/11237
- http://www.osvdb.org/10205
- http://secunia.com/advisories/12635
- http://marc.info/?l=bugtraq&m=109588376426070&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17470
Frequently Asked Questions
What is the severity of CVE-2004-1473?
CVE-2004-1473 has a medium severity due to the ability of remote attackers to bypass filtering and enumerate services.
How do I fix CVE-2004-1473?
To fix CVE-2004-1473, upgrade the affected Symantec firewall and VPN appliances to firmware version 1.63 or later.
Which devices are affected by CVE-2004-1473?
CVE-2004-1473 affects Symantec Enterprise Firewall/VPN Appliances 100, 200, 200R, and Gateway Security 320, 360, 360R running outdated firmware.
What is the impact of CVE-2004-1473 on network security?
The impact of CVE-2004-1473 is that it allows attackers to gain information about running services on the affected devices, potentially aiding further attacks.
How can I verify if my device is vulnerable to CVE-2004-1473?
To verify if your device is vulnerable to CVE-2004-1473, check if it is running a firmware version prior to 1.63 or 622 for the specific models listed.
- agent/type
- agent/remedy
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/references
- agent/last-modified-date
- agent/severity
- agent/description
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/symantec
- canonical/symantec firewall vpn appliance 100
- canonical/symantec firewall vpn appliance 200
- canonical/symantec firewall vpn appliance 200r
- canonical/symantec gateway security
- canonical/symantec gateway security 360
- canonical/symantec nexland isb soho firewall appliance
- canonical/symantec nexland pro100 firewall appliance
- canonical/symantec nexland pro400 firewall appliance
- canonical/symantec nexland pro800 firewall appliance
- canonical/symantec nexland pro800turbo firewall appliance
- canonical/symantec nexland wavebase firewall appliance