CVE-2004-0190

Name of the Vulnerable Software and Affected Versions Symantec FireWall/VPN Appliance model 200

Description The issue concerns the storage of a cleartext password for the password administration page. This password may be cached on the administrator's local system or in a proxy, allowing attackers to steal the password and gain privileges.

Recommendations For Symantec FireWall/VPN Appliance model 200, consider changing the password administration page to use a secure method of storing passwords, and clear any cached credentials on the administrator's local system and in proxies to prevent unauthorized access.