DNS Cache Poisoning Vulnerability in Symantec Gateway Security and Firewall
CVE-2005-0817

Currently unrated

Key Information:

Vendor: Symantec
Status: Enterprise Firewall; Velociraptor
Vendor: CVE Published:; 2 May 2005

Summary

A vulnerability exists in the DNSd proxy feature of various Symantec products, enabling remote attackers to perform DNS cache poisoning. This flaw allows attackers to manipulate DNS responses, potentially redirecting unsuspecting users to malicious websites. The affected systems include Symantec Gateway Security models 5400 and 5300, as well as the Enterprise Firewall and VelociRaptor series. Organizations using these products should assess their systems for exposure and implement appropriate security measures.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/16423

vdb-entryx_refsource_XF

http://www.isc.sans.org/diary.php?date=2005-03-04

x_refsource_MISC

http://securityresponse.symantec.com/avcenter/security/Co...

x_refsource_CONFIRM

Timeline

Vulnerability published
May 2, 2005
Vulnerability Reserved
Mar 20, 2005