Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec gateway security 3.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2341
The HTTP proxy in Symantec Gateway Security 5000 Series 2.0.1 and 3.0, and Enterprise Firewall 8.0, when NAT is being used, allows remote malicious users to determine internal IP addresses by using malformed HTTP requests, as demonstrated using a get request without a space separ...
Symantec Enterprise Firewall 8.0
Symantec Gateway Security 2.0.1
Symantec Gateway Security 3.0
Symantec Gateway Security 5000 Series 2.0.1
Symantec Gateway Security 5000 Series 3.0
1 EDB exploit
NA
CVE-2006-4562
The proxy DNS service in Symantec Gateway Security (SGS) allows remote malicious users to make arbitrary DNS queries to third-party DNS servers, while hiding the source IP address of the attacker. NOTE: another researcher has stated that the default configuration does not proxy D...
Symantec Gateway Security 5310 1.0
Symantec Gateway Security 5400 2.0.1
Symantec Gateway Security 5110
Symantec Gateway Security 5200 1.0
Symantec Gateway Security 360
Symantec Gateway Security 5300
Symantec Gateway Security 320
Symantec Gateway Security 360r
Symantec Gateway Security 1.0
Symantec Gateway Security 5400 2.0
Symantec Gateway Security 5000 Series 2.0.1
Symantec Gateway Security 5000 Series 3.0
Symantec Gateway Security 5200
Symantec Gateway Security 5300 1.0
Symantec Gateway Security 5110 1.0
NA
CVE-2007-0447
Heap-based buffer overflow in the Decomposer component in multiple Symantec products allows remote malicious users to execute arbitrary code via multiple crafted CAB archives.
Symantec Mail Security 4.0
Symantec Client Security 3.0
Symantec Norton Antivirus 10.0.2.2011
Symantec Norton Antivirus 2004
Symantec Norton Internet Security 2006
Symantec Norton Internet Security 2004
Symantec Antivirus Scan Engine 5.0
Symantec Norton Antivirus 9.0.1.1.1000
Symantec Web Security 3.0.1 Build 3.01.74
Symantec Norton Antivirus 10.0.2.2001
Symantec Norton Antivirus 9.0.0
Symantec Mail Security 5.0
Symantec Brightmail Antispam 6.0.2
Symantec Norton Antivirus 2005
Symantec Norton Antivirus 10.0.1.1008
Symantec Antivirus Scan Engine 4.3
Symantec Norton Antivirus 10.1
Symantec Web Security 2.5
Symantec Norton Antivirus 9.0.2
Symantec Norton Internet Security 2005
Symantec Norton System Works 2005
Symantec Brightmail Antispam 6.0.3
NA
CVE-2007-3699
The Decomposer component in multiple Symantec products allows remote malicious users to cause a denial of service (infinite loop) via a certain value in the PACK_SIZE field of a RAR archive file header.
Symantec Mail Security 4.0
Symantec Client Security 3.0
Symantec Norton Antivirus 10.0.2.2011
Symantec Norton Antivirus 2004
Symantec Norton Internet Security 2006
Symantec Norton Internet Security 2004
Symantec Antivirus Scan Engine 5.0
Symantec Norton Antivirus 9.0.1.1.1000
Symantec Web Security 3.0.1 Build 3.01.74
Symantec Norton Antivirus 10.0.2.2001
Symantec Norton Antivirus 9.0.0
Symantec Mail Security 5.0
Symantec Brightmail Antispam 6.0.2
Symantec Norton Antivirus 2005
Symantec Norton Antivirus 10.0.1.1008
Symantec Antivirus Scan Engine 4.3
Symantec Norton Antivirus 10.1
Symantec Web Security 2.5
Symantec Norton Antivirus 9.0.2
Symantec Norton Internet Security 2005
Symantec Norton System Works 2005
Symantec Brightmail Antispam 6.0.3
NA
CVE-2005-3768
Buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation in Symantec Dynamic VPN Services, as used in Enterprise Firewall, Gateway Security, and Firewall /VPN Appliance products, allows remote malicious users to cause a denial of service and possibly execute ...
Symantec Enterprise Firewall 8.0
Symantec Firewall Vpn Appliance 200
Symantec Gateway Security 5400 2.0.1
Symantec Gateway Security 300 2.0
Symantec Gateway Security 5100
Symantec Gateway Security 400 2.0
Symantec Gateway Security 5310 1.0
Symantec Gateway Security 5000 Series 3.0
Symantec Gateway Security 5300 1.0
Symantec Firewall Vpn Appliance 100
5.9
CVSSv3
CVE-2020-1971
The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERAL_NAME_cmp which compares different instances of a GENERAL_NAME to see if they are equal or not. This functi...
Openssl Openssl
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Oracle Api Gateway 11.1.2.4.0
Oracle Peoplesoft Enterprise Peopletools 8.56
Oracle Business Intelligence 12.2.1.3.0
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Jd Edwards World Security A9.4
Oracle Business Intelligence 12.2.1.4.0
Oracle Enterprise Manager Base Platform 13.3.0.0
Oracle Business Intelligence 5.5.0.0.0
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Enterprise Manager Base Platform 13.4.0.0
Oracle Http Server 12.2.1.4.0
Oracle Enterprise Manager For Storage Management 13.4.0.0
Oracle Enterprise Manager Ops Center 12.4.0.0
Oracle Mysql
Oracle Graalvm 19.3.4
Oracle Graalvm 20.3.0
Oracle Essbase 21.2
5 Github repositories
1 Article
7.5
CVSSv3
CVE-2004-0079
The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote malicious users to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
Cisco Firewall Services Module
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1.2
Hp Aaa Server
Cisco Firewall Services Module 1.1 (3.005)
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 (0.208)
Avaya Sg203 4.4
Hp Hp-ux 11.11
Redhat Enterprise Linux Desktop 3.0
Hp Hp-ux 11.23
Cisco Ciscoworks Common Management Foundation 2.1
Freebsd Freebsd 5.1
Avaya Sg208 4.4
Redhat Enterprise Linux 3.0
Avaya Sg200 4.4
Avaya Sg5 4.4
Redhat Linux 7.2
Cisco Ciscoworks Common Services 2.2
Openbsd Openbsd 3.3
NA
CVE-2004-0112
The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote malicious users to cause a denial of service (crash) via a crafted SSL/TLS handshak...
Cisco Firewall Services Module
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1.2
Hp Aaa Server
Cisco Firewall Services Module 1.1 (3.005)
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 (0.208)
Avaya Sg203 4.4
Hp Hp-ux 11.11
Redhat Enterprise Linux Desktop 3.0
Hp Hp-ux 11.23
Cisco Ciscoworks Common Management Foundation 2.1
Freebsd Freebsd 5.1
Avaya Sg208 4.4
Redhat Enterprise Linux 3.0
Avaya Sg200 4.4
Avaya Sg5 4.4
Redhat Linux 7.2
Cisco Ciscoworks Common Services 2.2
Openbsd Openbsd 3.3
NA
CVE-2004-0081
OpenSSL 0.9.6 prior to 0.9.6d does not properly handle unknown message types, which allows remote malicious users to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.
Cisco Firewall Services Module
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1.2
Hp Aaa Server
Cisco Firewall Services Module 1.1 (3.005)
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 (0.208)
Avaya Sg203 4.4
Hp Hp-ux 11.11
Redhat Enterprise Linux Desktop 3.0
Hp Hp-ux 11.23
Cisco Ciscoworks Common Management Foundation 2.1
Freebsd Freebsd 5.1
Avaya Sg208 4.4
Redhat Enterprise Linux 3.0
Avaya Sg200 4.4
Avaya Sg5 4.4
Redhat Linux 7.2
Cisco Ciscoworks Common Services 2.2
Openbsd Openbsd 3.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started