CVE-2007-4422

Name of the Vulnerable Software and Affected Versions Symantec Enterprise Firewall versions 6.x

Description The issue concerns the login interface in Symantec Enterprise Firewall. When a VPN with pre-shared key (PSK) authentication is enabled, it generates different responses depending on whether a username is valid. This allows remote attackers to enumerate valid usernames.

Recommendations For Symantec Enterprise Firewall versions 6.x, consider disabling the VPN with pre-shared key (PSK) authentication as a temporary workaround until a patch is available. Restrict access to the login interface to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.