Vulnerability in Symantec Enterprise_firewall
CVE-2004-1754
The DNS proxy (DNSd) for multiple Symantec Gateway Security products allows remote attackers to poison the DNS cache via a malicious DNS server query response that contains authoritative or additional records.
EPSS: 0.025 (82.6th percentile) — read the EPSS interpretation.
Affected products
- Symantec Enterprise_firewall — versions 7.0.4, 8.0
- Symantec Gateway_security — versions 5110_1.0, 5200_1.0, 5300_1.0
- N/a — versions n/a
References
- cve@mitre.org (Vendor Advisory, mailing-list, Exploit, x_refsource_BUGTRAQ)
- cve@mitre.org (Exploit, Patch, vdb-entry, x_refsource_BID, Vendor Advisory)
- cve@mitre.org (Patch, x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- cve@mitre.org (x_refsource_CONFIRM, Patch, Vendor Advisory)