Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec web security 3.0.1 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2004-2755
Cross-site scripting (XSS) vulnerability in Symantec Web Security 2.5, 3.0.0, and 3.0.1 before build 62 allows remote malicious users to inject arbitrary web script or HTML via the query string in blocked URLs that are listed in (1) error or (2) block page messages.
Symantec Web Security 3.0.1
Symantec Web Security 2.5
Symantec Web Security 3.0
828
VMScore
CVE-2007-0447
Heap-based buffer overflow in the Decomposer component in multiple Symantec products allows remote malicious users to execute arbitrary code via multiple crafted CAB archives.
Symantec Antivirus Scan Engine 4.3.12
Symantec Antivirus Scan Engine 4.3
Symantec Brightmail Antispam 6.0.1
Symantec Brightmail Antispam 6.0.2
Symantec Client Security 2.0.4
Symantec Client Security 3.0.1.1001
Symantec Client Security 3.0.1.1007
Symantec Client Security 3.0.2.2020
Symantec Client Security 3.0.2.2021
Symantec Mail Security 4.0
Symantec Mail Security 4.1
Symantec Mail Security 4.6.3
Symantec Mail Security 4.6 Build 97
Symantec Norton Antivirus
Symantec Norton Antivirus 10.0.0.359
Symantec Norton Antivirus 10.0.2.2002
Symantec Norton Antivirus 10.0.2.2010
Symantec Norton Antivirus 10.1.396
Symantec Norton Antivirus 10.1.4.4010
Symantec Norton Antivirus 2004
Symantec Norton Antivirus 2005
Symantec Norton Antivirus 9.0.1.1.1000
828
VMScore
CVE-2007-3699
The Decomposer component in multiple Symantec products allows remote malicious users to cause a denial of service (infinite loop) via a certain value in the PACK_SIZE field of a RAR archive file header.
Symantec Antivirus Scan Engine 4.0
Symantec Antivirus Scan Engine 4.3.12
Symantec Antivirus Scan Engine 4.3
Symantec Brightmail Antispam 6.0.2
Symantec Brightmail Antispam 6.0.3
Symantec Client Security 2.0.4
Symantec Client Security 2.0.5 Build 1100 Mp1
Symantec Client Security 3.0.1.1007
Symantec Client Security 3.0.1.1008
Symantec Client Security 3.0.2.2021
Symantec Client Security 3.1
Symantec Mail Security 4.0
Symantec Mail Security 4.1
Symantec Mail Security 4.5.4.743
Symantec Mail Security 4.6 Build 97
Symantec Mail Security 5.0.0.204
Symantec Norton Antivirus 10.0.0.359
Symantec Norton Antivirus 10.0.0
Symantec Norton Antivirus 10.0.2.2010
Symantec Norton Antivirus 10.0.2.2011
Symantec Norton Antivirus 10.1.4.4010
Symantec Norton Antivirus 10.1.4
445
VMScore
CVE-2004-0079
The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote malicious users to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
Cisco Firewall Services Module
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1.2
Hp Aaa Server
Cisco Firewall Services Module 1.1 \\(3.005\\)
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 \\(0.208\\)
Avaya Sg203 4.4
Hp Hp-ux 11.11
Redhat Enterprise Linux Desktop 3.0
Hp Hp-ux 11.23
Cisco Ciscoworks Common Management Foundation 2.1
Freebsd Freebsd 5.1
Avaya Sg208 4.4
Redhat Enterprise Linux 3.0
Avaya Sg200 4.4
Avaya Sg5 4.4
Redhat Linux 7.2
Cisco Ciscoworks Common Services 2.2
Openbsd Openbsd 3.3
445
VMScore
CVE-2004-0112
The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote malicious users to cause a denial of service (crash) via a crafted SSL/TLS handshak...
Cisco Firewall Services Module
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1.2
Hp Aaa Server
Cisco Firewall Services Module 1.1 \\(3.005\\)
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 \\(0.208\\)
Avaya Sg203 4.4
Hp Hp-ux 11.11
Redhat Enterprise Linux Desktop 3.0
Hp Hp-ux 11.23
Cisco Ciscoworks Common Management Foundation 2.1
Freebsd Freebsd 5.1
Avaya Sg208 4.4
Redhat Enterprise Linux 3.0
Avaya Sg200 4.4
Avaya Sg5 4.4
Redhat Linux 7.2
Cisco Ciscoworks Common Services 2.2
Openbsd Openbsd 3.3
445
VMScore
CVE-2004-0081
OpenSSL 0.9.6 prior to 0.9.6d does not properly handle unknown message types, which allows remote malicious users to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1 \\(3.005\\)
Cisco Firewall Services Module
Cisco Firewall Services Module 1.1.2
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 \\(0.208\\)
Hp Aaa Server
Cisco Ciscoworks Common Management Foundation 2.1
Cisco Ciscoworks Common Services 2.2
Avaya Sg208 4.4
Avaya Sg5 4.2
Avaya Sg5 4.3
Freebsd Freebsd 5.1
Hp Hp-ux 8.05
Openbsd Openbsd 3.3
Redhat Linux 8.0
Sco Openserver 5.0.6
Avaya Sg203 4.4
Avaya Sg208
Freebsd Freebsd 4.8
NA
CVE_2022_40684
Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started