Flaws affect Symantec's Nexland appliances

By Bill Brenner, News Writer 30 Dec 2004 | SearchSecurity.com

Digg This!     StumbleUpon     Del.icio.us

Three high-risk vulnerabilities found in Symantec's Firewall/VPN and Gateway Security products last fall also affect the company's Nexland firewall appliances, according to a new advisory.

"All of these vulnerabilities are remotely exploitable and can allow an attacker to perform a denial-of-service attack against the firewall appliance, identify active services in the WAN interface, and exploit one of these services to collect and alter the firewall's configuration," the Cupertino, Calif.-based company said. "All three vulnerabilities are addressed and resolved in available updated firmware release builds."

The vulnerabilities were originally reported in the following products:

• Symantec Firewall/VPN Appliance 100 prior to build 1.63;
• Symantec Firewall/VPN Appliance 200/200R prior to build 1.63;
• Symantec Gateway Security 320 prior to build 622; and
• Symantec Gateway Security 360/360R prior to build 622.

Additional research found the security holes also affect:

• Nexland ISB SOHO Firewall appliance prior to build 16U;
• Nexland Pro100 and Pro400 Firewall appliances prior to build 16U;
• Nexland Pro800 and Pro800turbo Firewall appliances prior to build 16U; and
• Nexland WaveBase Firewall appliances prior to build 16U.

Symantec said the vulnerabilities were discovered by Rigel Kent Security & Advisory Services during an assessment. "Additional research also shows that the legacy Nexland Firewall appliances, now supported by Symantec, are also affected," the advisory said. Symantec added it has confirmed all the vulnerabilities and "coordinated extensively with Rigel Kent Security & Advisory Services to finalize and thoroughly test the fixes for Symantec's affected products."

The firm has released firmware builds labeled 1.63 for Symantec Firewall/VPN appliance models 100, 200 and 200R and has also released firmware builds 622 for Symantec Gateway Security appliance models 320, 360 and 360R. Furthermore, firmware build 16U has been released for the Nexland appliances.

Tags: Network Intrusion Detection (IDS),  UTM Appliances and Strategies,  Network Firewalls, Routers and Switches,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Network Intrusion Detection (IDS) Preventing SQL injection attacks: A network admin's perspective Lifecycle of a network security vulnerability Best Intrusion Prevention and Detection Products Rogue AP containment methods SIMs tools and tactics for business intelligence IPS and IDS deployment strategies Know when you need IDS, IPS or both Trend Micro to acquire Third Brigade for virtualization, cloud security New product aims to control rogue applications that avoid firewalls How to perform a network forensic analysis and investigation Network Intrusion Detection (IDS) Research UTM Appliances and Strategies Best Unified Threat Management Products Unified threat management products gaining midmarket, enterprise foothold Virtual appliances boost flexibility, improve security Enterprise UTM security: The best threat management solution? Microsoft Threat Management Gateway has some drawbacks The case against UTM: Is there a better alternative? Rising Profile Check Point to acquire Nokia security appliance business McAfee adds NAC module, appliance for unified policy enforcement IBM announcements mark two years of ISS marriage Network Firewalls, Routers and Switches How to prepare for a secure network hardware upgrade Best Network Firewall Products What is the difference between static and dynamic network validation? Screencast: Smoothwall offers firewall defense in lean times New Cisco IOS bugs pose tempting targets, says Black Hat researcher How to implement virtual firewalls in a complex network infrastructure How to manage network bandwidth with distributed ISP bandwidth Firewall rule management best practices Should enterprises be running multiple firewalls? What are the disadvantages of proxy-based firewalls?

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary computer forensics  (SearchSecurity.com) Diffie-Hellman key exchange  (SearchSecurity.com) Einstein  (SearchSecurity.com) HIDS/NIDS  (SearchSecurity.com) network behavior analysis  (SearchSecurity.com) ultrasound  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary