// For flags

CVE-2005-0618

 

Severity Score

9.1
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The SMTP binding function in Symantec Firewall/VPN Appliance 200/200R firmware after 1.5Z and before 1.68, Gateway Security 360/360R and 460/460R firmware before vuild 858, and Nexland Pro800turbo, when configured for load balancing between two WANs, might send SMTP traffic to a trusted network through an untrusted network.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2005-03-02 CVE Reserved
  • 2005-03-02 CVE Published
  • 2024-08-07 CVE Updated
  • 2025-03-30 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Nexland
Search vendor "Nexland"
 Pro800turbo
Search vendor "Nexland" for product "Pro800turbo"
*-
Affected
Symantec
Search vendor "Symantec"
 Firewall Vpn Appliance 200r
Search vendor "Symantec" for product "Firewall Vpn Appliance 200r"
*-
Affected
Symantec
Search vendor "Symantec"
 Gateway Security 360
Search vendor "Symantec" for product "Gateway Security 360"
 <= 857
Search vendor "Symantec" for product "Gateway Security 360" and version " <= 857"
-
Affected
Symantec
Search vendor "Symantec"
 Gateway Security 460
Search vendor "Symantec" for product "Gateway Security 460"
 <= 857
Search vendor "Symantec" for product "Gateway Security 460" and version " <= 857"
-
Affected