Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec gateway security 5400 2.0 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2004-0192
Cross-site scripting (XSS) vulnerability in the Management Service for Symantec Gateway Security 2.0 allows remote malicious users to steal cookies and hijack a management session via a /sgmi URL that contains malicious script, which is not quoted in the resulting error page.
Symantec Gateway Security 5400 2.0
1 EDB exploit
5
CVSSv2
CVE-2005-0817
Unknown vulnerability in the DNSd proxy, as used in Symantec Gateway Security 5400 2.x and 5300 1.x, Enterprise Firewall 7.0.x and 8.x, and VelociRaptor 1100/1200/1300 1.5, allows remote malicious users to poison the DNS cache and redirect users to malicious sites.
Symantec Velociraptor Model 1300
Symantec Enterprise Firewall 7.0
Symantec Enterprise Firewall 8.0
Symantec Gateway Security 5300 1.0
Symantec Gateway Security 5400 2.0
7.5
CVSSv2
CVE-2004-0369
Buffer overflow in Entrust LibKmp ISAKMP library, as used by Symantec Enterprise Firewall 7.0 up to and including 8.0, Gateway Security 5300 1.0, Gateway Security 5400 2.0, and VelociRaptor 1.5, allows remote malicious users to execute arbitrary code via a crafted ISAKMP payload.
Symantec Velociraptor 1.5
Symantec Enterprise Firewall 7.0.4
Symantec Enterprise Firewall 7.0
Entrust Entrust Libkmp Isakmp Library
Symantec Enterprise Firewall 8.0
Symantec Gateway Security 5300 1.0
Symantec Gateway Security 5400 2.0
9.3
CVSSv2
CVE-2007-0447
Heap-based buffer overflow in the Decomposer component in multiple Symantec products allows remote malicious users to execute arbitrary code via multiple crafted CAB archives.
Symantec Antivirus Scan Engine 4.3.12
Symantec Antivirus Scan Engine 4.3
Symantec Brightmail Antispam 6.0.1
Symantec Brightmail Antispam 6.0.2
Symantec Client Security 2.0.4
Symantec Client Security 3.0.1.1001
Symantec Client Security 3.0.1.1007
Symantec Client Security 3.0.2.2020
Symantec Client Security 3.0.2.2021
Symantec Mail Security 4.0
Symantec Mail Security 4.1
Symantec Mail Security 4.6.3
Symantec Mail Security 4.6 Build 97
Symantec Norton Antivirus
Symantec Norton Antivirus 10.0.0.359
Symantec Norton Antivirus 10.0.2.2002
Symantec Norton Antivirus 10.0.2.2010
Symantec Norton Antivirus 10.1.396
Symantec Norton Antivirus 10.1.4.4010
Symantec Norton Antivirus 2004
Symantec Norton Antivirus 2005
Symantec Norton Antivirus 9.0.1.1.1000
9.3
CVSSv2
CVE-2007-3699
The Decomposer component in multiple Symantec products allows remote malicious users to cause a denial of service (infinite loop) via a certain value in the PACK_SIZE field of a RAR archive file header.
Symantec Antivirus Scan Engine 4.0
Symantec Antivirus Scan Engine 4.3.12
Symantec Antivirus Scan Engine 4.3
Symantec Brightmail Antispam 6.0.2
Symantec Brightmail Antispam 6.0.3
Symantec Client Security 2.0.4
Symantec Client Security 2.0.5 Build 1100 Mp1
Symantec Client Security 3.0.1.1007
Symantec Client Security 3.0.1.1008
Symantec Client Security 3.0.2.2021
Symantec Client Security 3.1
Symantec Mail Security 4.0
Symantec Mail Security 4.1
Symantec Mail Security 4.5.4.743
Symantec Mail Security 4.6 Build 97
Symantec Mail Security 5.0.0.204
Symantec Norton Antivirus 10.0.0.359
Symantec Norton Antivirus 10.0.0
Symantec Norton Antivirus 10.0.2.2010
Symantec Norton Antivirus 10.0.2.2011
Symantec Norton Antivirus 10.1.4.4010
Symantec Norton Antivirus 10.1.4
9.3
CVSSv2
CVE-2004-1029
The Sun Java Plugin capability in Java 2 Runtime Environment (JRE) 1.4.2_01, 1.4.2_04, and possibly earlier versions, does not properly restrict access between Javascript and Java applets during data transfer, which allows remote malicious users to load unsafe classes and execute...
Hp Java Sdk-rte 1.3
Sun Jdk 1.3.1 02
Sun Jdk 1.3.1 03
Sun Jdk 1.3.1 06
Sun Jdk 1.4.0 02
Sun Jdk 1.4.0 03
Sun Jdk 1.4.1
Sun Jdk 1.4.1 03
Sun Jdk 1.4.2 03
Sun Jdk 1.4
Sun Jre 1.3.0
Sun Jre 1.3.1
Sun Jre 1.3.1 02
Sun Jre 1.3.1 05
Sun Jre 1.3.1 06
Sun Jre 1.3.1 09
Sun Jre 1.4.0 03
Sun Jre 1.4.1
Sun Jre 1.4.1 07
Sun Jre 1.4.2
Conectiva Linux 10.0
Sun Jdk 1.3.1 05
1 EDB exploit
7.5
CVSSv2
CVE-2005-3768
Buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation in Symantec Dynamic VPN Services, as used in Enterprise Firewall, Gateway Security, and Firewall /VPN Appliance products, allows remote malicious users to cause a denial of service and possibly execute ...
Symantec Enterprise Firewall 8.0
Symantec Gateway Security 5300 1.0
Symantec Gateway Security 5310 1.0
Symantec Firewall Vpn Appliance 100
Symantec Gateway Security 5400 2.0.1
Symantec Firewall Vpn Appliance 200
Symantec Gateway Security 300 2.0
Symantec Gateway Security 400 2.0
Symantec Gateway Security 5000 Series 3.0
Symantec Gateway Security 5100
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started