Symantec: >> Enterprise Firewall >> 6 Security Vulnerabilities
The login interface in Symantec Enterprise Firewall 6.x, when a VPN with pre-shared key (PSK) authentication is enabled, generates different responses depending on whether or not a username is valid, which allows remote attackers to enumerate valid usernames.
CVSS Score
9.3
EPSS Score
0.022
Published
2007-08-18