Details of VAR-200207-0082

ID

VAR-200207-0082

CVE

CVE-2002-0538

TITLE

Symantec Raptor / Enterprise Firewall Can be used FTP Bounce Attack vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200207-011

DESCRIPTION

FTP proxy in Symantec Raptor Firewall 6.5.3 and Enterprise 7.0 rewrites an FTP server's "FTP PORT" responses in a way that allows remote attackers to redirect FTP data connections to arbitrary ports, a variant of the "FTP bounce" vulnerability. Raptor Firewall is an enterprise level firewall originally developed by Axent Technologies and is maintained and distributed by Symantec. Symantec Enterprise Firewall is formerly known as Raptor firewall. It is available for Microsoft Windows and Unix operating systems. As a result, if the attacker can authenticate with the FTP server (anonymously or otherwise), then it is possible to cause the FTP server to make a connection to an arbitrary host. It should be noted that affected firewall implementations disable FTP PORT connections to ports below 1024. Symantec has reported that Enterprise Firewall V7.0 for Solaris is also vulnerable to this issue

Trust: 1.26

sources: NVD: CVE-2002-0538 // BID: 4522 // VULHUB: VHN-4930

AFFECTED PRODUCTS

vendor:	symantec	model:	enterprise firewall	scope:	eq	version:	6.5.2	Trust: 1.6
vendor:	symantec	model:	enterprise firewall	scope:	eq	version:	7.0	Trust: 1.6
vendor:	symantec	model:	raptor firewall	scope:	eq	version:	6.5.3	Trust: 1.6
vendor:	symantec	model:	velociraptor	scope:	eq	version:	1.x	Trust: 1.6
vendor:	symantec	model:	raptor firewall	scope:	eq	version:	6.5	Trust: 1.6
vendor:	symantec	model:	gateway security	scope:	eq	version:	1.0	Trust: 1.6
vendor:	symantec	model:	raptor firewall solaris	scope:	eq	version:	6.5.3	Trust: 0.3
vendor:	symantec	model:	enterprise firewall solaris	scope:	eq	version:	7.0	Trust: 0.3
vendor:	symantec	model:	enterprise firewall nt/2000	scope:	eq	version:	7.0	Trust: 0.3

sources: BID: 4522 // CNNVD: CNNVD-200207-011 // NVD: CVE-2002-0538

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2002-0538
value:	HIGH
Trust: 1.0
CNNVD:	CNNVD-200207-011
value:	HIGH
Trust: 0.6
VULHUB:	VHN-4930
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2002-0538
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-4930
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-4930 // CNNVD: CNNVD-200207-011 // NVD: CVE-2002-0538

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2002-0538

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200207-011

TYPE

Design Error

Trust: 0.9

sources: BID: 4522 // CNNVD: CNNVD-200207-011

EXTERNAL IDS

db:	BID	id:	4522	Trust: 2.0
db:	NVD	id:	CVE-2002-0538	Trust: 1.7
db:	CNNVD	id:	CNNVD-200207-011	Trust: 0.7
db:	XF	id:	8847	Trust: 0.6
db:	BUGTRAQ	id:	20020417 RE: RAPTOR FIREWALL FTP BOUNCE VULNERABILITY	Trust: 0.6
db:	BUGTRAQ	id:	20020415 RAPTOR FIREWALL FTP BOUNCE VULNERABILITY	Trust: 0.6
db:	VULHUB	id:	VHN-4930	Trust: 0.1

sources: VULHUB: VHN-4930 // BID: 4522 // CNNVD: CNNVD-200207-011 // NVD: CVE-2002-0538

REFERENCES

url:	http://www.securityfocus.com/bid/4522	Trust: 3.3
url:	http://archives.neohapsis.com/archives/bugtraq/2002-04/0166.html	Trust: 2.7
url:	http://archives.neohapsis.com/archives/bugtraq/2002-04/0224.html	Trust: 2.7
url:	http://securityresponse.symantec.com/avcenter/security/content/2002.04.17.html	Trust: 2.7
url:	http://www.iss.net/security_center/static/8847.php	Trust: 2.7
url:	http://www.symantec.com/techsupp/enterprise/products/raptor_firewall/files.html	Trust: 0.3

sources: VULHUB: VHN-4930 // BID: 4522 // CNNVD: CNNVD-200207-011 // NVD: CVE-2002-0538

CREDITS

Roy Hills※ Roy.Hills@nta-monitor.com

Trust: 0.6

sources: CNNVD: CNNVD-200207-011

SOURCES

db:	VULHUB	id:	VHN-4930
db:	BID	id:	4522
db:	CNNVD	id:	CNNVD-200207-011
db:	NVD	id:	CVE-2002-0538

LAST UPDATE DATE

2024-11-22T23:07:00.705000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-4930	date:	2011-03-08T00:00:00
db:	BID	id:	4522	date:	2002-04-16T00:00:00
db:	CNNVD	id:	CNNVD-200207-011	date:	2005-10-12T00:00:00
db:	NVD	id:	CVE-2002-0538	date:	2024-11-20T23:39:19.253

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-4930	date:	2002-07-03T00:00:00
db:	BID	id:	4522	date:	2002-04-16T00:00:00
db:	CNNVD	id:	CNNVD-200207-011	date:	2002-04-16T00:00:00
db:	NVD	id:	CVE-2002-0538	date:	2002-07-03T04:00:00