Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2002-2336

CWE-164 documents4 sources

Severity

4.3MEDIUM

EPSS

6.8%

top 8.69%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Symantec Norton Personal Firewall

Timeline

PublishedDec 31

Latest updateApr 30

Description

Norton Personal Firewall 2002 4.0, when configured to automatically block attacks, allows remote attackers to block IP addresses and cause a denial of service via spoofed packets.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

▶NVDsymantec/norton_personal_firewall2002

🔴Vulnerability Details

GHSA

GHSA-jm5c-2v59-m834: Norton Personal Firewall 2002 4↗2022-04-30

▶

CVEList

CVE-2002-2336: Norton Personal Firewall 2002 4↗2007-10-29

▶

💥Exploits & PoCs

Exploit-DB

Symantec Norton Personal Firewall 2002/Kaspersky Labs Anti-Hacker 1.0/BlackIce Server Protection 3.5/BlackICE Defender 2.9 - Auto Block Denial of Service↗2002-10-08

▶