7.5

CVE-2004-0369

Buffer overflow in Entrust LibKmp ISAKMP library, as used by Symantec Enterprise Firewall 7.0 through 8.0, Gateway Security 5300 1.0, Gateway Security 5400 2.0, and VelociRaptor 1.5, allows remote attackers to execute arbitrary code via a crafted ISAKMP payload.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SymantecEnterprise Firewall Version7.0 Editionsolaris
SymantecEnterprise Firewall Version7.0.4 Editionsolaris
SymantecEnterprise Firewall Version7.0.4 Editionwindows_2000_nt
SymantecEnterprise Firewall Version8.0 Editionsolaris
SymantecEnterprise Firewall Version8.0 Editionwindows_2000_nt
SymantecVelociraptor Version1.5
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.37% 0.9
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://securityresponse.symantec.com/avcenter/security/Content/2004.08.26.html
Vendor Advisory
http://www.auscert.org.au/render.html?it=4339
Vendor Advisory
http://www.ciac.org/ciac/bulletins/o-206.shtml
Vendor Advisory
http://www.securityfocus.com/bid/11039
http://xforce.iss.net/xforce/alerts/id/181
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/15669