CVE-2004-1474

Published: Dec 31, 2004Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 uses a default read/write SNMP community string, which allows remote attackers to alter the firewall's configuration file.

Affected (12)

Products: Symantec: Firewall Vpn Appliance 100, Firewall Vpn Appliance 200, Firewall Vpn Appliance 200r, Gateway Security 320, Gateway Security 360, Gateway Security 360r, Nexland Isb Soho Firewall Appliance, Nexland Pro100 Firewall Appliance, Nexland Pro400 Firewall Appliance, Nexland Pro800 Firewall Appliance, Nexland Pro800turbo Firewall Appliance, Nexland Wavebase Firewall Appliance

Symantec

12 products

Firewall Vpn Appliance 100

Firewall Vpn Appliance 200

Firewall Vpn Appliance 200r

Gateway Security 320

Gateway Security 360

Gateway Security 360r

Nexland Isb Soho Firewall Appliance

Nexland Pro100 Firewall Appliance

Nexland Pro400 Firewall Appliance

Nexland Pro800 Firewall Appliance

Nexland Pro800turbo Firewall Appliance

Nexland Wavebase Firewall Appliance

Configuration A

12 vulnerable

Vulnerable Software	Affected Versions
Symantec Firewall Vpn Appliance 100	All versions
Symantec Firewall Vpn Appliance 200	All versions
Symantec Firewall Vpn Appliance 200r	All versions
Symantec Gateway Security 320	All versions
Symantec Gateway Security 360	All versions
Symantec Gateway Security 360r	All versions
Symantec Nexland Isb Soho Firewall Appliance	All versions
Symantec Nexland Pro100 Firewall Appliance	All versions
Symantec Nexland Pro400 Firewall Appliance	All versions
Symantec Nexland Pro800 Firewall Appliance	All versions
Symantec Nexland Pro800turbo Firewall Appliance	All versions
Symantec Nexland Wavebase Firewall Appliance	All versions