Symantec Gateway Security iskampd Bug Lets Remote Users Deny Service
|
|
SecurityTracker Alert ID: 1011061
|
|
SecurityTracker URL: http://securitytracker.com/id?1011061
|
|
CVE Reference: GENERIC-MAP-NOMATCH
(Links to External Site)
|
Date: Aug 25 2004
|
Impact: Denial of service via network
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Version(s): 1.0, 2.0
|
Description: A vulnerability was reported in Symantec Gateway Security. A remote user can cause denial of service conditions.
The vendor reported that a remote user can cause denial of service conditions in isakmpd on the target system. No further details
were provided.
The original advisories are available at:
ftp://ftp.symantec.com/public/updates/entrust-sgs10-readme.txt
ftp://ftp.symantec.com/public/updates/entru
st-sgs20-readme.txt
|
Impact: A remote user can cause denial of service conditions on the target system.
|
Solution: The vendor has released a hotfix for version 1.0 (SG7004-20040715-00), available at:
ftp://ftp.symantec.com/public/updates/entrust-sgs10-3des.tgz
For
1.0, hotfix HB7000-20040503-00 is a prerequisite.
The vendor has released a hotfix for version 2.0 (SG8000-20040715-00), available
at:
ftp://ftp.symantec.com/public/updates/entrust-sgs20.tgz
For 2.0, hotfixes HB8000-20031023-00 and SG8000-20040405-00 are
prerequisites.
|
Vendor URL: www.symantec.com/ (Links to External Site)
|
Cause: Not specified
|
Underlying OS: Linux (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Aug 25, 2004
Subject: Symantec Gateway Security 1.0
|
ftp://ftp.symantec.com/public/updates/entrust-sgs10-readme.txt
Symantec issued a hotfix for Symantec Gateway Security 1.0 (SG7004-20040715-00) to
correct the vulnerability reported in CAN-2004-0369:
ftp://ftp.symantec.com/public/updates/entrust-sgs10-3des.tgz
Hotfix HB7000-20040503-00 is a prerequisite.
|
|
