CVE-2002-1937

Name of the Vulnerable Software and Affected Versions Symantec Firewall/VPN Appliance versions 100 through 200R

Description The issue allows remote attackers to perform an ARP poisoning man-in-the-middle attack by spoofing the administrator's MAC address, which is hardcoded inside the firewall's configuration. This can lead to obtaining the administrator's password.

Recommendations For versions 100 through 200R, consider changing the hardcoded administrator's MAC address to a unique value to prevent spoofing, and restrict access to the firewall's configuration to minimize the risk of exploitation.