Symantec: >> Gateway Security >> 5400_2.0.1 Security Vulnerabilities
The proxy DNS service in Symantec Gateway Security (SGS) allows remote attackers to make arbitrary DNS queries to third-party DNS servers, while hiding the source IP address of the attacker. NOTE: another researcher has stated that the default configuration does not proxy DNS queries received on the external interface
CVSS Score
5.0
EPSS Score
0.005
Published
2006-09-06
The DNS proxy (DNSd) for multiple Symantec Gateway Security products allows remote attackers to poison the DNS cache via a malicious DNS server query response that contains authoritative or additional records.
CVSS Score
5.0
EPSS Score
0.044
Published
2004-06-15