VULHUB ™

The Symantec Enterprise Firewall (SEP) is a high performance firewall solution, and is available for both Windows and Solaris systems. Symantec Enterprise Firewall includes SMTP proxying functionality. This has the effect of concealing internal network infrastructure information from external recipients of mail. The Symantec Enterprise Firewall accomplishes this functionality by rewriting the SMTP header. A problem occurs when addresses for incoming and outgoing SMTP connections are mapped, using NAT (Network Address Translation), to addresses other than that of the physical firewall interface. The name/address of the physical firewall interface is still included in the rewritten SMTP header. The information disclosed in the SMTP header may reveal details about the firewall's configuration. This issue was tested on SEP v6.5.x. Other versions may be affected by this vulnerability.

The Symantec Enterprise Firewall (SEP) is a high performance firewall solution, and is available for both Windows and Solaris systems. Symantec Enterprise Firewall includes SMTP proxying functionality. This has the effect of concealing internal network infrastructure information from external recipients of mail. The Symantec Enterprise Firewall accomplishes this functionality by rewriting the SMTP header. A problem occurs when addresses for incoming and outgoing SMTP connections are mapped, using NAT (Network Address Translation), to addresses other than that of the physical firewall interface. The name/address of the physical firewall interface is still included in the rewritten SMTP header. The information disclosed in the SMTP header may reveal details about the firewall's configuration. This issue was tested on SEP v6.5.x. Other versions may be affected by this vulnerability.