Symantec Enterprise Firewall, a security solution that was meant to represent the protection system for the enterprise consumers, is now vulnerable to attacks as a new flaw was discovered. Security company Secunia discovered the hole that might allow an attacker to obtain valid usernames
from the affected computer but rated it as not critical. The vulnerability was already confirmed in Symantec Enterprise 6.x but there is no official statement that it might affect the previous versions of the product.
"A weakness has been reported in Symantec Enterprise Firewall, which can be exploited by malicious people to determine valid usernames. The problem is that a different response is sent when using a valid or invalid username and can be exploited to determine valid usernames. Successful exploitation requires that the application is configured for remote access (client-to-gateway) VPN using pre-shared key (PSK) authentication," Secunia mentioned in the advisory.
Symantec confirmed the vulnerability and added that the exposure can provide instant access to usernames and passwords through a login interface. The severity of the hole was low but Symantec encourages users to apply the solution as soon as possible.
"Symantec engineers have verified this exposure. They have found that if the Client VPN is configured with a username "default-ikeuser", the problem disappears. This user name is used to enable off-box extended authentication. Off-box extended authentication however is not need to add the default-ikeuser to any group that has firewall rules associated with it," Symantec mentioned in the message posted today on the official page of the company.
In the recent period, Symantec was one of the most affected firms when it comes to vulnerable security products but numerous consumers are continuously looking for their solutions. If you want to download a Symantec product, you can find all of them listed on Softpedia.
Find us on Google+
No user comments yet.
Be the first to express your opinion!
