CVE-2002-1463

Symantec Raptor Firewall <7.0 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1463.

AI-analyzed exploit summary The vulnerability in the Linux kernel's 'secure_tcp_sequence_number' function allows remote users to predict TCP initial sequence numbers (ISN) due to weak MD4-based generation, enabling session spoofing and bypassing IP-based access controls. The analysis references the specific function and file in the kernel code.

Description

Symantec Raptor Firewall 6.5 and 6.5.3, Enterprise Firewall 6.5.2 and 7.0, VelociRaptor Models 500/700/1000 and 1100/1200/1300, and Gateway Security 5110/5200/5300 generate easily predictable initial sequence numbers (ISN), which allows remote attackers to spoof connections.

Exploits (1)

exploitdb WRITEUP

remotelinux

https://www.exploit-db.com/exploits/19522

View Code ZIP pw:eip

The vulnerability in the Linux kernel's 'secure_tcp_sequence_number' function allows remote users to predict TCP initial sequence numbers (ISN) due to weak MD4-based generation, enabling session spoofing and bypassing IP-based access controls. The analysis references the specific function and file in the kernel code.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Theoretical

Target: Linux kernel (versions prior to fix)

No auth needed

Prerequisites: Network access to target system · Ability to observe or predict ISN generation patterns

MITRE ATT&CK

T1590 - Gather Victim Network Information

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (5)

Core 5

Core References

Patch, Vendor Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2002-07/0492.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/5387

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/12836

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/855

Patch, Vendor Advisory x_refsource_confirm

http://www.symantec.com/techsupp/bulletin/archive/firewall/082002firewall.html

Scores

EPSS 0.0691

EPSS Percentile 93.3%

Details

Status published

Products (13)

symantec/enterprise_firewall 6.5.2

symantec/enterprise_firewall 7.0

symantec/gateway_security 5110

symantec/gateway_security 5200

symantec/gateway_security 5300

symantec/raptor_firewall 6.5

symantec/raptor_firewall 6.5.3

symantec/velociraptor model_500

symantec/velociraptor model_700

symantec/velociraptor model_1000

... and 3 more

Published Jun 09, 2003

Tracked Since Feb 18, 2026