Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2002-0990

Published: Oct 28, 2002 | Modified: Oct 18, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2002-0990
CWEhttps://cwe.mitre.org/data/definitions/NVD-Other.html

The web proxy component in Symantec Enterprise Firewall (SEF) 6.5.2 through 7.0, Raptor Firewall 6.5 and 6.5.3, VelociRaptor, and Symantec Gateway Security allow remote attackers to cause a denial of service (connection resource exhaustion) via multiple connection requests to domains whose DNS server is unresponsive or does not exist, which generates a long timeout.

Affected Software

Name Vendor Start Version End Version
Enterprise_firewall Symantec 6.5.2 (including) 6.5.2 (including)
Enterprise_firewall Symantec 7.0 (including) 7.0 (including)
Raptor_firewall Symantec 6.5 (including) 6.5 (including)
Raptor_firewall Symantec 6.5.3 (including) 6.5.3 (including)
Velociraptor Symantec 500 (including) 500 (including)
Velociraptor Symantec 700 (including) 700 (including)
Velociraptor Symantec 1000 (including) 1000 (including)
Velociraptor Symantec 1100 (including) 1100 (including)
Velociraptor Symantec 1200 (including) 1200 (including)
Velociraptor Symantec 1300 (including) 1300 (including)

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use