CVE-2006-2341
N/A
N/A
Summary
The HTTP proxy in Symantec Gateway Security 5000 Series 2.0.1 and 3.0, and Enterprise Firewall 8.0, when NAT is being used, allows remote attackers to determine internal IP addresses by using malformed HTTP requests, as demonstrated using a get request without a space separating the URI.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://securityresponse.symantec.com/avcenter/security/Content/2006.05.10.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26370
- http://www.securityfocus.com/bid/17936
- http://www.vupen.com/english/advisories/2006/1764
- http://securitytracker.com/id?1016057
- http://securitytracker.com/id?1016058
- http://secunia.com/advisories/20082
- http://www.securityfocus.com/archive/1/433876/30/5040/threaded
References
- http://securityresponse.symantec.com/avcenter/security/Content/2006.05.10.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26370
- http://www.securityfocus.com/bid/17936
- http://www.vupen.com/english/advisories/2006/1764
- http://securitytracker.com/id?1016057
- http://securitytracker.com/id?1016058
- http://secunia.com/advisories/20082
- http://www.securityfocus.com/archive/1/433876/30/5040/threaded
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.