Portscan Bypass Vulnerability in Symantec Norton Personal Firewall
CVE-2002-1778

Currently unrated

Key Information:

Vendor: Symantec
Status: Norton Personal Firewall
Vendor: CVE Published:; 31 December 2002

What is CVE-2002-1778?

The Norton Personal Firewall 2002 developed by Symantec is susceptible to a portscan bypass vulnerability that enables remote attackers to circumvent the firewall's portscan protection mechanisms. This is achieved by exploiting the TCP SYN/FIN flags in various combinations: (1) SYN/FIN, (2) SYN/FIN/URG, (3) SYN/FIN/PUSH, or (4) SYN/FIN/URG/PUSH. Attackers may leverage this flaw to probe the network's open ports without triggering alerts designed to protect against such scans, potentially exposing sensitive systems to further attacks.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/8859

vdb-entryx_refsource_XF

http://securityresponse.symantec.com/avcenter/security/Co...

x_refsource_CONFIRM

http://online.securityfocus.com/archive/1/267850

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Jun 21, 2005
Vulnerability published
Dec 31, 2002