CVE-2004-1754

Symantec Gateway Security - DNS Cache Poisoning

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-1754. PoCs published by fryxar.

AI-analyzed exploit summary This PoC demonstrates a DNS cache poisoning vulnerability in dnsd by crafting malicious DNS responses. It sets up a rogue DNS server that responds to queries for a specified domain with spoofed records, redirecting traffic to attacker-controlled IPs.

Description

The DNS proxy (DNSd) for multiple Symantec Gateway Security products allows remote attackers to poison the DNS cache via a malicious DNS server query response that contains authoritative or additional records.

Exploits (1)

exploitdb WORKING POC VERIFIED

by fryxar · c++remotewindows

https://www.exploit-db.com/exploits/24218

View Code ZIP pw:eip

This PoC demonstrates a DNS cache poisoning vulnerability in dnsd by crafting malicious DNS responses. It sets up a rogue DNS server that responds to queries for a specified domain with spoofed records, redirecting traffic to attacker-controlled IPs.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: dnsd (versions affected by CVE-2004-1754)

No auth needed

Prerequisites: Network access to target DNS server · Ability to intercept or spoof DNS responses

MITRE ATT&CK

T1557 - Adversary-in-the-Middle

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit, Vendor Advisory mailing-list x_refsource_bugtraq

http://lists.virus.org/bugtraq-0406/msg00234.html

Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/10557

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/11888

Patch, Vendor Advisory x_refsource_confirm

http://securityresponse.symantec.com/avcenter/security/Content/2004.06.21.html

Scores

EPSS 0.0957

EPSS Percentile 93.1%

Details

Status published

Products (8)

symantec/enterprise_firewall 7.0.4 (2 CPE variants)

symantec/enterprise_firewall 8.0 (3 CPE variants)

symantec/gateway_security 5110_1.0

symantec/gateway_security 5200_1.0

symantec/gateway_security 5300_1.0

symantec/gateway_security 5310_1.0

symantec/gateway_security 5400_2.0

symantec/gateway_security 5400_2.0.1

Published Jun 15, 2004

Tracked Since Feb 18, 2026