PT-2002-3109 · Sygate · Sygate Personal Firewall

Published

2002-12-31

Updated

2008-09-05

CVE-2002-2397

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Sygate personal firewall version 5.0

Description The issue allows remote attackers to bypass firewall filters. This can be achieved by spoofing either the source IP address as 127.0.0.1 or the network address as 127.0.0.0.

Recommendations For Sygate personal firewall version 5.0, consider restricting access to the firewall configuration to prevent unauthorized changes until a patch is available. As a temporary workaround, monitor network traffic closely for signs of spoofed IP addresses, specifically 127.0.0.1 and 127.0.0.0, to minimize the risk of exploitation.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2002-2397

Affected Products

Sygate Personal Firewall

PT-2002-3109 · Sygate · Sygate Personal Firewall

CVE-2002-2397

Weakness Enumeration

Related Identifiers

Affected Products

References · 5