Symantec.Firewall.UDP.ISAKMP.Filtering.Bypass
Description
This indicates an attempt to exploit an information disclosure vulnerability in Symantec Firewall products.
Symantec Enterprise Firewall/VPN Appliances are unable to block UDP scans with a source port of 53. This allows an attacker to determine what services are running on the device.
Affected Products
Symantec Nexland Firewall Appliances:
WaveBase
Pro800turbo
Pro800
Pro400
Pro100
Symantec Gateway Security:
360R
360
320
Symantec Firewall/VPN Appliances:
200R
200
100
Impact
Information Disclosure.
Recommended Actions
Apply the appropriate patch from the vendor or upgrade to a non-vulnerable version.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-12-11 | 16.978 |