Searching vpn 1 firewall 1 software vulnerabilities

Buffer overflow in the (1) smap/smapd and (2) C

overflow | Buffer |

Buffer overflow in the (1) smap/smapd and (2) CSMAP daemons for Gauntlet Firewall 5.0 through 6.0 allows remote attackers to execute arbitrary code via a crafted mail message.


Snapgear Lite+ firewall 1.5.4 and 1.5.3 allows

firewall | Snapgear | Lite+ |

Snapgear Lite+ firewall 1.5.4 and 1.5.3 allows remote attackers to cause a denial of service (crash) via a large number of connections to (1) the HTTP web management port, or (2) the PPTP port.


Buffer overflows in Cisco Virtual Private Netwo

overflows | Virtual | Private | Network | Buffer | Cisco |

Buffer overflows in Cisco Virtual Private Network (VPN) Client 3.5.4 and earlier allows remote attackers to cause a denial of service via (1) an Internet Key Exchange (IKE) with a large Security Parameter Index (SPI) payload, or (2) an IKE packet with a large number of valid payloads.


Information leaks in Cisco VPN 3000 Concentrato

Information | Cisco | leaks | VPN |

Information leaks in Cisco VPN 3000 Concentrator 2.x.x and 3.x.x before 3.5.4 allow remote attackers to obtain potentially sensitive information via the (1) SSH banner, (2) FTP banner, or (3) an incorrect HTTP request.


Cisco VPN 3000 Concentrator 2.2.x, and 3.x befo

Cisco | VPN |

Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, allows remote attackers to cause a denial of service (crash) via a long (1) username or (2) password to the HTML login interface.


Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), an

Cisco | VPN |

Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), and 3.x before 3.5.5, allows remote attackers to cause a denial of service via (1) malformed or (2) large ISAKMP packets.


Buffer overflows in the Cisco VPN 5000 Client b

overflows | Buffer | Cisco | VPN |

Buffer overflows in the Cisco VPN 5000 Client before 5.2.7 for Linux, and VPN 5000 Client before 5.2.8 for Solaris, allow local users to gain root privileges via (1) close_tunnel and (2) open_tunnel.


Symantec Firewall/VPN Appliance 100 through 200

Firewall/VPN | Appliance | Symantec |

Symantec Firewall/VPN Appliance 100 through 200R hardcodes the administrator's MAC address inside the firewall's configuration, which allows remote attackers to spoof the administrator's MAC address and perform an ARP poisoning man-in-the-middle attack to obtain the administrator's password.


Cisco PIX Firewall 6.0.3 and earlier, and 6.1.x

Firewall | Cisco | PIX |

Cisco PIX Firewall 6.0.3 and earlier, and 6.1.x to 6.1.3, do not delete the duplicate ISAKMP SAs for a user's VPN session, which allows local users to hijack a session via a man-in-the-middle attack.


Buffer overflow in Cisco PIX Firewall 5.2.x to

Firewall | overflow | Buffer | Cisco | 52x | PIX |

Buffer overflow in Cisco PIX Firewall 5.2.x to 5.2.8, 6.0.x to 6.0.3, 6.1.x to 6.1.3, and 6.2.x to 6.2.1 allows remote attackers to cause a denial of service via HTTP traffic authentication using (1) TACACS+ or (2) RADIUS.


SafeNet VPN client allows remote attackers to c

arbitrary | attackers | possibly | Exchange | Internet | service | crafted | execute | SafeNet | allows | client | denial | remote | cause | code | Key | via | VPN |

SafeNet VPN client allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly involving buffer overflows using (1) a large Security Parameter Index (SPI) field, (2) a large number of payloads, or (3) a long payload.


Cisco PIX firewall 6.2.x through 6.2.3, when co

firewall | through | Cisco | PIX | 62x |

Cisco PIX firewall 6.2.x through 6.2.3, when configured as a VPN Client, allows remote attackers to cause a denial of service (dropped IPSec tunnel connection) via an IKE Phase I negotiation request to the outside interface of the firewall.


Symantec Enterprise Firewall/VPN Appliances 100

Firewall/VPN | Appliances | Enterprise | Symantec |

Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 allow remote attackers to cause a denial of service (device freeze) via a fast UDP port scan on the WAN interface.


Symantec Enterprise Firewall/VPN Appliances 100

Firewall/VPN | Appliances | Enterprise | Symantec |

Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R running firmware before 1.63 and Gateway Security 320, 360, and 360R running firmware before 622 uses a default read/write SNMP community string, which allows remote attackers to alter the firewall's configuration file.


Agnitum Outpost Firewall Pro 3.51.759.6511 (462

Firewall | Outpost | Agnitum | Pro |

Agnitum Outpost Firewall Pro 3.51.759.6511 (462), as used in (1) Lavasoft Personal Firewall 1.0.543.5722 (433) and (2) Novell BorderManager Novell Client Firewall 2.0, does not properly restrict user activities in application windows that run in a LocalSystem context, which allows local users to gain privileges and execute commands (a) via the "open folder" option when no instance of explorer.exe is running, possibly related to the ShellExecute API function; or (b) by overwriting a batch file through the "Save Configuration As" option. NOTE: this might be a vulnerability in Microsoft Windows and explorer.exe instead of the firewall.


Intoto iGateway VPN and iGateway SSL-VPN allow

context-dependent | attackers | iGateway | SSL-VPN | service | Intoto | denial | cause | allow | VPN |

Intoto iGateway VPN and iGateway SSL-VPN allow context-dependent attackers to cause a denial of service (CPU consumption) via parasitic public keys with large (1) "public exponent" or (2) "public modulus" values in X.509 certificates that require extra time to process when using RSA signature verification, a related issue to CVE-2006-2940.


Cisco Secure Desktop (CSD) does not require tha

Desktop | Secure | Cisco |

Cisco Secure Desktop (CSD) does not require that the ClearPageFileAtShutdown (aka CCE-Winv2.0-407) registry value equals 1, which might allow local users to read certain memory pages that were written during another user's SSL VPN session.


Filseclab Personal Firewall 3.0.0.8686 relies o

Filseclab | Firewall | Personal |

Filseclab Personal Firewall 3.0.0.8686 relies on the Process Environment Block (PEB) to identify a process, which allows local users to bypass the product's controls on a process by spoofing the (1) ImagePathName, (2) CommandLine, and (3) WindowTitle fields in the PEB.


cmdmon.sys in Comodo Firewall Pro (formerly Com

cmdmonsys | Firewall | Comodo | Pro |

cmdmon.sys in Comodo Firewall Pro (formerly Comodo Personal Firewall) before 2.4.16.174 does not validate arguments that originate in user mode for the (1) NtConnectPort and (2) NtCreatePort hooked SSDT functions, which allows local users to cause a denial of service (system crash) and possibly gain privileges via invalid arguments.


The login interface in Symantec Enterprise Fire

Enterprise | pre-shared | interface | Firewall | Symantec | login | key | VPN |

The login interface in Symantec Enterprise Firewall 6.x, when a VPN with pre-shared key (PSK) authentication is enabled, generates different responses depending on whether or not a username is valid, which allows remote attackers to enumerate valid usernames.


Software vulnerabilities results 1 to 20 of 5752     
Page: 12345...288