Vulnerability Name:

CVE-2005-0618 (CCN-19521)

Assigned:2005-03-01
Published:2005-03-01
Updated:2008-09-05
Summary:The SMTP binding function in Symantec Firewall/VPN Appliance 200/200R firmware after 1.5Z and before 1.68, Gateway Security 360/360R and 460/460R firmware before vuild 858, and Nexland Pro800turbo, when configured for load balancing between two WANs, might send SMTP traffic to a trusted network through an untrusted network.
CVSS v3 Severity:6.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:6.4 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): None
6.4 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-Other
Vulnerability Consequences:Bypass Security
References:Source: CCN
Type: Symantec FTP Update Web site
FTP updates

Source: MITRE
Type: CNA
CVE-2005-0618

Source: CCN
Type: SA14428
Symantec Firewall Devices SMTP Binding Configuration Bypass

Source: SECUNIA
Type: UNKNOWN
14428

Source: CONFIRM
Type: UNKNOWN
http://securityresponse.symantec.com/avcenter/security/Content/2005.02.28.html

Source: CCN
Type: CIAC INFORMATION BULLETIN P-148
Symantec SMTP Binding Configuration Vulnerability

Source: CCN
Type: OSVDB ID: 14271
Symantec Multiple Firewall SMTP Binding Configuration Bypass

Source: CCN
Type: BID-12654
Symantec Gateway Security SMTP Data Leak Vulnerability

Source: CCN
Type: Symantec Security Response SYM05-004
SMTP Binding Configuration Settings Bypassed

Source: XF
Type: UNKNOWN
symantec-smtp-configuration-bypass(19521)

Vulnerable Configuration:Configuration 1:
  • cpe:/h:nexland:pro800turbo:*:*:*:*:*:*:*:*
  • OR cpe:/h:symantec:firewall_vpn_appliance_200r:*:*:*:*:*:*:*:*
  • OR cpe:/h:symantec:gateway_security_360:*:*:*:*:*:*:*:* (Version <= 857)
  • OR cpe:/h:symantec:gateway_security_460:*:*:*:*:*:*:*:* (Version <= 857)

    • Configuration CCN 1:
  • cpe:/h:symantec:firewall_vpn_appliance_200:*:*:*:*:*:*:*:*
  • OR cpe:/h:symantec:firewall_vpn_appliance_200r:*:*:*:*:*:*:*:*
  • OR cpe:/h:symantec:gateway_security:360:*:*:*:*:*:*:*
  • OR cpe:/h:symantec:gateway_security:360r:*:*:*:*:*:*:*
  • OR cpe:/h:symantec:gateway_security_460:-:*:*:*:*:*:*:*
  • OR cpe:/h:symantec:gateway_security_460r:-:*:*:*:*:*:*:*
  • OR cpe:/h:symantec:nexland_pro800turbo_firewall_appliance:*:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    nexland pro800turbo *
    symantec firewall vpn appliance 200r *
    symantec gateway security 360 *
    symantec gateway security 460 *
    symantec firewall vpn appliance 200 *
    symantec firewall vpn appliance 200r *
    symantec gateway security 360
    symantec gateway security 360r
    symantec gateway security 460 -
    symantec gateway security 460r -
    symantec nexland pro800turbo firewall appliance *