CVE-2002-2294

CWE-119 — Buffer Overflow3 documents3 sources

Severity

5.0MEDIUM

EPSS

1.3%

top 20.44%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Enterprise Firewall Symantec Raptor Firewall Symantec Velociraptor

Timeline

PublishedDec 31

Latest updateApr 30

Description

Multiple buffer overflows in Symantec Raptor Firewall 6.5 and 6.5.3, Enterprise Firewall 6.5.2 and 7.0, VelociRaptor 500/700/1000 and 1100/1200/1300, and Gateway Security 5110/5200/5300 allow remote attackers to cause a denial of service (service termination) via (1) malformed RealAudio (rad) packets that are not properly handled by the RealAudio Proxy, or (2) crafted packets to the statistics service (statsd).

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶NVDsymantec/raptor_firewall6.5, 6.5.3+1

▶NVDsymantec/enterprise_firewall6.5.2, 7.0+1

▶NVDsymantec/velociraptor6 versions+5

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-5j7p-qf86-r89c: Multiple buffer overflows in Symantec Raptor Firewall 6↗2022-04-30

▶

CVEList

CVE-2002-2294: Multiple buffer overflows in Symantec Raptor Firewall 6↗2007-10-18

▶