CVE-2004-1474

Currently unrated

Key Information:

Vendor: Symantec
Status: Gateway Security 360; Firewall Vpn Appliance 200; Nexland Wavebase Firewall Appliance; Gateway Security 320
Vendor: CVE Published:; 31 December 2004

Summary

Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 uses a default read/write SNMP community string, which allows remote attackers to alter the firewall's configuration file.

References

http://secunia.com/advisories/12635

third-party-advisoryx_refsource_SECUNIA

http://securityresponse.symantec.com/avcenter/security/Co...

x_refsource_CONFIRM

http://www.kb.cert.org/vuls/id/173910

third-party-advisoryx_refsource_CERT-VN

Timeline

Vulnerability Reserved
Feb 13, 2005
Vulnerability published
Dec 31, 2004