PT-2005-1846 · Symantec · Symantec Velociraptor 1100/1200/1300+3
Published
2005-03-20
·
Updated
2017-07-11
·
CVE-2005-0817
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Symantec Gateway Security 5400 versions 2.x
Symantec Gateway Security 5300 versions 1.x
Symantec Enterprise Firewall versions 7.0.x through 8.x
Symantec VelociRaptor 1100/1200/1300 version 1.5
Description
The issue allows remote attackers to poison the DNS cache, which can redirect users to malicious sites.
Recommendations
For Symantec Gateway Security 5400 version 2.x, update the DNSd proxy configuration to prevent cache poisoning.
For Symantec Gateway Security 5300 version 1.x, restrict access to the DNSd proxy until a fix is available.
For Symantec Enterprise Firewall versions 7.0.x through 8.x, consider disabling the DNSd proxy function as a temporary workaround.
For Symantec VelociRaptor 1100/1200/1300 version 1.5, avoid using the DNSd proxy until the issue is resolved.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Symantec Enterprise Firewall
Symantec Gateway Security 5300
Symantec Gateway Security 5400
Symantec Velociraptor 1100/1200/1300