CVE-2006-2341

Name of the Vulnerable Software and Affected Versions Symantec Gateway Security 5000 Series versions 2.0.1 through 3.0 Symantec Enterprise Firewall version 8.0

Description The issue allows remote attackers to determine internal IP addresses by using malformed HTTP requests. This can be achieved by sending a get request without a space separating the URI, effectively bypassing NAT and exposing internal IP addresses.

Recommendations For Symantec Gateway Security 5000 Series versions 2.0.1 through 3.0, consider restricting access to the HTTP proxy to minimize the risk of exploitation. For Symantec Enterprise Firewall version 8.0, avoid using NAT with malformed HTTP requests until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.