CVE Vulnerabilities

CVE-2006-4562

Published: Sep 06, 2006 | Modified: Nov 07, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

The proxy DNS service in Symantec Gateway Security (SGS) allows remote attackers to make arbitrary DNS queries to third-party DNS servers, while hiding the source IP address of the attacker. NOTE: another researcher has stated that the default configuration does not proxy DNS queries received on the external interface

Affected Software

Name Vendor Start Version End Version
Gateway_security Symantec 5310_1.0 5310_1.0
Gateway_security Symantec 5400_2.0.1 5400_2.0.1
Gateway_security Symantec 5110 5110
Gateway_security Symantec 5200_1.0 5200_1.0
Gateway_security Symantec 360 360
Gateway_security Symantec 5300 5300
Gateway_security Symantec 320 320
Gateway_security Symantec 360r 360r
Gateway_security Symantec 1.0 1.0
Gateway_security Symantec 5400_2.0 5400_2.0
Gateway_security Symantec 5000_series_2.0.1 5000_series_2.0.1
Gateway_security Symantec 5000_series_3.0 5000_series_3.0
Gateway_security Symantec 5200 5200
Gateway_security Symantec 5300_1.0 5300_1.0
Gateway_security Symantec 5110_1.0 5110_1.0

References