surfingate software vulnerabilities
vulnerabilities.aspcode.net
Searching surfingate software vulnerabilities
Finjan Software SurfinGate 6.0 and 6.0 1 allows
restrictions
|
SurfinGate
|
qualified
|
attackers
|
Software
|
hostname
|
portion
|
Finjan
|
domain
|
bypass
|
remote
|
allows
|
access
|
fully
|
whose
|
name
|
uses
|
URL
|
via
|
Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions via a URL whose hostname portion uses a fully qualified domain name (FQDN) that ends in a "." (dot).
Finjan SurfinGate 6.0 and 7.0, when running in
authenticate
|
SurfinGate
|
commands
|
running
|
Finjan
|
FHTTP
|
proxy
|
port
|
mode
|
does
|
not
|
TCP
|
Finjan SurfinGate 6.0 and 7.0, when running in proxy mode, does not authenticate FHTTP commands on TCP port 3141, which allows remote attackers to use the finjan-parameter-type header to (1) restart the service, (2) use the getlastmsg command to view log information, or (3) use the online command to force a policy update from the database server.
Finjan SurfinGate 7.0SP2 and SP3 allows remote
demonstrated
|
hex-encoded
|
characters
|
SurfinGate
|
attackers
|
download
|
filename
|
blocked
|
allows
|
Finjan
|
remote
|
70SP2
|
using
|
"%2e"
|
files
|
via
|
SP3
|
Finjan SurfinGate 7.0SP2 and SP3 allows remote attackers to download blocked files via hex-encoded characters in a filename, as demonstrated using "%2e".
Software vulnerabilities results 1 to 4 of 4
Page:
1