Details of VAR-200212-0721

ID

VAR-200212-0721

CVE

CVE-2002-2397

TITLE

Sygate personal firewall Firewall bypass vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200212-421

DESCRIPTION

Sygate personal firewall 5.0 could allow remote attackers to bypass firewall filters via spoofed (1) source IP address of 127.0.0.1 or (2) network address of 127.0.0.0. Sygate personal firewall 5.0 is vulnerable

Trust: 1.26

sources: NVD: CVE-2002-2397 // BID: 86678 // VULHUB: VHN-6780

AFFECTED PRODUCTS

vendor:

symantec

model:

sygate personal firewall

scope:

version:

5.0

Trust: 1.9

sources: BID: 86678 // CNNVD: CNNVD-200212-421 // NVD: CVE-2002-2397

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2002-2397
value:	HIGH
Trust: 1.0
CNNVD:	CNNVD-200212-421
value:	CRITICAL
Trust: 0.6
VULHUB:	VHN-6780
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2002-2397
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-6780
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-6780 // CNNVD: CNNVD-200212-421 // NVD: CVE-2002-2397

PROBLEMTYPE DATA

problemtype:

CWE-287

Trust: 1.1

sources: VULHUB: VHN-6780 // NVD: CVE-2002-2397

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200212-421

TYPE

authorization issue

Trust: 0.6

sources: CNNVD: CNNVD-200212-421

EXTERNAL IDS

db:	NVD	id:	CVE-2002-2397	Trust: 2.0
db:	CNNVD	id:	CNNVD-200212-421	Trust: 0.7
db:	XF	id:	10108	Trust: 0.6
db:	VULNWATCH	id:	20020916 NSSI-2002-SYGATEPFW5: SYGATE PERSONAL FIREWALL IP SPOOFING VULNERABILITY	Trust: 0.6
db:	BID	id:	86678	Trust: 0.4
db:	VULHUB	id:	VHN-6780	Trust: 0.1

sources: VULHUB: VHN-6780 // BID: 86678 // CNNVD: CNNVD-200212-421 // NVD: CVE-2002-2397

REFERENCES

url:	http://www.securiteam.com/windowsntfocus/5wp0i2a8ai.html	Trust: 2.0
url:	http://www.derkeiler.com/mailing-lists/vulnwatch/2002-09/0015.html	Trust: 2.0
url:	http://www.iss.net/security_center/static/10108.php	Trust: 1.7
url:	http://www22.brinkster.com/nssitech/nssilabs/nssi-2002-sygatepfw5.html	Trust: 1.1

sources: VULHUB: VHN-6780 // BID: 86678 // CNNVD: CNNVD-200212-421 // NVD: CVE-2002-2397

CREDITS

Unknown

Trust: 0.3

sources: BID: 86678

SOURCES

db:	VULHUB	id:	VHN-6780
db:	BID	id:	86678
db:	CNNVD	id:	CNNVD-200212-421
db:	NVD	id:	CVE-2002-2397

LAST UPDATE DATE

2024-08-14T14:35:59.058000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-6780	date:	2008-09-05T00:00:00
db:	BID	id:	86678	date:	2002-12-31T00:00:00
db:	CNNVD	id:	CNNVD-200212-421	date:	2002-12-31T00:00:00
db:	NVD	id:	CVE-2002-2397	date:	2008-09-05T20:33:07.100

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-6780	date:	2002-12-31T00:00:00
db:	BID	id:	86678	date:	2002-12-31T00:00:00
db:	CNNVD	id:	CNNVD-200212-421	date:	2002-12-31T00:00:00
db:	NVD	id:	CVE-2002-2397	date:	2002-12-31T05:00:00