Symantec.Firewall.UDP.ISAKMP.Filtering.Bypass

description-logoDescription

This indicates an attempt to exploit an information disclosure vulnerability in Symantec Firewall products.
Symantec Enterprise Firewall/VPN Appliances are unable to block UDP scans with a source port of 53. This allows an attacker to determine what services are running on the device.

affected-products-logoAffected Products

Symantec Nexland Firewall Appliances:
WaveBase
Pro800turbo
Pro800
Pro400
Pro100
Symantec Gateway Security:
360R
360
320
Symantec Firewall/VPN Appliances:
200R
200
100

Impact logoImpact

Information Disclosure.

recomended-action-logoRecommended Actions

Apply the appropriate patch from the vendor or upgrade to a non-vulnerable version.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-12-11 16.978