PT-2005-1846 · Symantec · Symantec Velociraptor 1100/1200/1300+3
Publicado
2005-03-20
·
Atualizado
2017-07-11
·
CVE-2005-0817
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Symantec Gateway Security 5400 versions 2.x
Symantec Gateway Security 5300 versions 1.x
Symantec Enterprise Firewall versions 7.0.x through 8.x
Symantec VelociRaptor 1100/1200/1300 version 1.5
Description
The issue allows remote attackers to poison the DNS cache, which can redirect users to malicious sites.
Recommendations
For Symantec Gateway Security 5400 version 2.x, update the DNSd proxy configuration to prevent cache poisoning.
For Symantec Gateway Security 5300 version 1.x, restrict access to the DNSd proxy until a fix is available.
For Symantec Enterprise Firewall versions 7.0.x through 8.x, consider disabling the DNSd proxy function as a temporary workaround.
For Symantec VelociRaptor 1100/1200/1300 version 1.5, avoid using the DNSd proxy until the issue is resolved.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Symantec Enterprise Firewall
Symantec Gateway Security 5300
Symantec Gateway Security 5400
Symantec Velociraptor 1100/1200/1300