Symantec Enterprise Firewall Username Enumeration Weakness

Bugtraq ID: 25338
Class: Design Error
CVE:
Remote: Yes
Local: No
Published: Aug 16 2007 12:00AM
Updated: Aug 16 2007 12:00AM
Credit: The vendor credits Roy Hill of NTA Monitor Ltd with discovering this weakness.
Vulnerable: Symantec Enterprise Firewall 6.5.2 NT/2000
- Microsoft Windows 2000 Advanced Server SP2
 - Microsoft Windows 2000 Advanced Server SP1
 - Microsoft Windows 2000 Professional SP3
 - Microsoft Windows 2000 Professional SP2
 - Microsoft Windows 2000 Professional SP1
 - Microsoft Windows 2000 Server SP2
 - Microsoft Windows 2000 Server SP1
 - Microsoft Windows NT 4.0 SP6a
 - Microsoft Windows NT 4.0 SP5
 - Microsoft Windows NT 4.0 SP4
 - Microsoft Windows NT 4.0 SP3
 - Microsoft Windows NT 4.0 SP2
 - Microsoft Windows NT 4.0 SP1
 - Microsoft Windows NT 4.0
 Symantec Enterprise Firewall 6.0
shaun@shat.net Network Query Tool 6.5 NT
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus