CVE-2002-0309

SMTP proxy in Symantec Enterprise Firewall (SEF) 6.5.x includes the firewall's physical interface name and address in an SMTP protocol exchange when NAT translation is made to an address other than the firewall, which could allow remote attackers to determine certain firewall configuration information.

Published: May 31, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-0309
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
symantec / enterprise_firewall	6.5.2	6.5.2.x

http://marc.info/?l=bugtraq&m=101424307617060&w=2
http://marc.info/?l=bugtraq&m=101430810813853&w=2
http://securityresponse.symantec.com/avcenter/security/Content/2002.02.20.html
http://www.iss.net/security_center/static/8251.php
http://www.securityfocus.com/bid/4141

Vulnerability Database

289,697

CVE-2002-0309