Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-2341

CWE-200Information Exposure4 documents4 sources
Severity
5.0MEDIUM
EPSS
10.1%
top 6.91%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Symantec Enterprise FirewallSymantec Gateway Security
Timeline
PublishedMay 12
Latest updateMay 1

Description

The HTTP proxy in Symantec Gateway Security 5000 Series 2.0.1 and 3.0, and Enterprise Firewall 8.0, when NAT is being used, allows remote attackers to determine internal IP addresses by using malformed HTTP requests, as demonstrated using a get request without a space separating the URI.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDsymantec/gateway_security4 versions+3

Patches

Patch: secunia.comPatch: securityresponse.symantec.comPatch: securitytracker.com

🔴Vulnerability Details

2
GHSA
GHSA-64qh-q5qg-p2h5: The HTTP proxy in Symantec Gateway Security 5000 Series 22022-05-01
CVEList
CVE-2006-2341: The HTTP proxy in Symantec Gateway Security 5000 Series 22006-05-12

💥Exploits & PoCs

1
Exploit-DB
Symantec Enterprise Firewall / Gateway Security - HTTP Proxy Internal IP Leakage2006-05-10
CVE-2006-2341 (MEDIUM CVSS 5) | The HTTP proxy in Symantec Gateway | cvebase.io