CVE-2002-0309

3 documents3 sources

Severity

5.0MEDIUM

EPSS

2.7%

top 14.05%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Enterprise Firewall

Timeline

PublishedMay 31

Latest updateApr 30

Description

SMTP proxy in Symantec Enterprise Firewall (SEF) 6.5.x includes the firewall's physical interface name and address in an SMTP protocol exchange when NAT translation is made to an address other than the firewall, which could allow remote attackers to determine certain firewall configuration information.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDsymantec/enterprise_firewall6.5.2

🔴Vulnerability Details

GHSA

GHSA-389w-w95c-w2gj: SMTP proxy in Symantec Enterprise Firewall (SEF) 6↗2022-04-30

▶

CVEList

CVE-2002-0309: SMTP proxy in Symantec Enterprise Firewall (SEF) 6↗2003-04-02

▶