CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
87.3%
Buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation in Symantec Dynamic VPN Services, as used in Enterprise Firewall, Gateway Security, and Firewall /VPN Appliance products, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
Vendor | Product | Version | CPE |
---|---|---|---|
symantec | enterprise_firewall | 8.0 | cpe:2.3:a:symantec:enterprise_firewall:8.0:*:solaris:*:*:*:*:* |
symantec | enterprise_firewall | 8.0 | cpe:2.3:a:symantec:enterprise_firewall:8.0:*:windows:*:*:*:*:* |
symantec | firewall_vpn_appliance_100 | * | cpe:2.3:h:symantec:firewall_vpn_appliance_100:*:*:*:*:*:*:*:* |
symantec | firewall_vpn_appliance_200 | * | cpe:2.3:h:symantec:firewall_vpn_appliance_200:*:*:*:*:*:*:*:* |
symantec | gateway_security_300 | 2.0 | cpe:2.3:h:symantec:gateway_security_300:2.0:*:*:*:*:*:*:* |
symantec | gateway_security_400 | 2.0 | cpe:2.3:h:symantec:gateway_security_400:2.0:*:*:*:*:*:*:* |
symantec | gateway_security_5000_series | 3.0 | cpe:2.3:h:symantec:gateway_security_5000_series:3.0:*:*:*:*:*:*:* |
symantec | gateway_security_5100 | * | cpe:2.3:h:symantec:gateway_security_5100:*:*:*:*:*:*:*:* |
symantec | gateway_security_5300 | 1.0 | cpe:2.3:h:symantec:gateway_security_5300:1.0:*:*:*:*:*:*:* |
symantec | gateway_security_5310 | 1.0 | cpe:2.3:h:symantec:gateway_security_5310:1.0:*:*:*:*:*:*:* |