Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2004-1474

Published: Dec 31, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2004-1474
CWEhttps://cwe.mitre.org/data/definitions/NVD-Other.html

Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 uses a default read/write SNMP community string, which allows remote attackers to alter the firewalls configuration file.

Affected Software

Name Vendor Start Version End Version
Gateway_security_360 Symantec * *
Firewall_vpn_appliance_200 Symantec * *
Nexland_wavebase_firewall_appliance Symantec * *
Gateway_security_320 Symantec * *
Nexland_pro400_firewall_appliance Symantec * *
Gateway_security_360r Symantec * *
Nexland_pro800turbo_firewall_appliance Symantec * *
Nexland_pro800_firewall_appliance Symantec * *
Nexland_pro100_firewall_appliance Symantec * *
Firewall_vpn_appliance_200r Symantec * *
Nexland_isb_soho_firewall_appliance Symantec * *
Firewall_vpn_appliance_100 Symantec * *

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2023 Aqua Security Software Ltd.   Privacy Policy | Terms of Use