Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec gateway security 5400 2.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2004-1754
The DNS proxy (DNSd) for multiple Symantec Gateway Security products allows remote malicious users to poison the DNS cache via a malicious DNS server query response that contains authoritative or additional records.
Symantec Enterprise Firewall 8.0
Symantec Enterprise Firewall 7.0.4
Symantec Gateway Security 5310 1.0
Symantec Gateway Security 5400 2.0.1
Symantec Gateway Security 5200 1.0
Symantec Gateway Security 5400 2.0
Symantec Gateway Security 5300 1.0
Symantec Gateway Security 5110 1.0
1 EDB exploit
NA
CVE-2004-0192
Cross-site scripting (XSS) vulnerability in the Management Service for Symantec Gateway Security 2.0 allows remote malicious users to steal cookies and hijack a management session via a /sgmi URL that contains malicious script, which is not quoted in the resulting error page.
Symantec Gateway Security 5400 2.0
1 EDB exploit
NA
CVE-2006-4562
The proxy DNS service in Symantec Gateway Security (SGS) allows remote malicious users to make arbitrary DNS queries to third-party DNS servers, while hiding the source IP address of the attacker. NOTE: another researcher has stated that the default configuration does not proxy D...
Symantec Gateway Security 5310 1.0
Symantec Gateway Security 5400 2.0.1
Symantec Gateway Security 5110
Symantec Gateway Security 5200 1.0
Symantec Gateway Security 360
Symantec Gateway Security 5300
Symantec Gateway Security 320
Symantec Gateway Security 360r
Symantec Gateway Security 1.0
Symantec Gateway Security 5400 2.0
Symantec Gateway Security 5000 Series 2.0.1
Symantec Gateway Security 5000 Series 3.0
Symantec Gateway Security 5200
Symantec Gateway Security 5300 1.0
Symantec Gateway Security 5110 1.0
NA
CVE-2005-0817
Unknown vulnerability in the DNSd proxy, as used in Symantec Gateway Security 5400 2.x and 5300 1.x, Enterprise Firewall 7.0.x and 8.x, and VelociRaptor 1100/1200/1300 1.5, allows remote malicious users to poison the DNS cache and redirect users to malicious sites.
Symantec Enterprise Firewall 7.0
Symantec Enterprise Firewall 8.0
Symantec Velociraptor Model 1300
Symantec Gateway Security 5400 2.0
Symantec Gateway Security 5300 1.0
NA
CVE-2004-0369
Buffer overflow in Entrust LibKmp ISAKMP library, as used by Symantec Enterprise Firewall 7.0 up to and including 8.0, Gateway Security 5300 1.0, Gateway Security 5400 2.0, and VelociRaptor 1.5, allows remote malicious users to execute arbitrary code via a crafted ISAKMP payload.
Entrust Entrust Libkmp Isakmp Library
Symantec Enterprise Firewall 8.0
Symantec Enterprise Firewall 7.0.4
Symantec Enterprise Firewall 7.0
Symantec Velociraptor 1.5
Symantec Gateway Security 5400 2.0
Symantec Gateway Security 5300 1.0
NA
CVE-2007-3699
The Decomposer component in multiple Symantec products allows remote malicious users to cause a denial of service (infinite loop) via a certain value in the PACK_SIZE field of a RAR archive file header.
Symantec Mail Security 4.0
Symantec Client Security 3.0
Symantec Norton Antivirus 10.0.2.2011
Symantec Norton Antivirus 2004
Symantec Norton Internet Security 2006
Symantec Norton Internet Security 2004
Symantec Antivirus Scan Engine 5.0
Symantec Norton Antivirus 9.0.1.1.1000
Symantec Web Security 3.0.1 Build 3.01.74
Symantec Norton Antivirus 10.0.2.2001
Symantec Norton Antivirus 9.0.0
Symantec Mail Security 5.0
Symantec Brightmail Antispam 6.0.2
Symantec Norton Antivirus 2005
Symantec Norton Antivirus 10.0.1.1008
Symantec Antivirus Scan Engine 4.3
Symantec Norton Antivirus 10.1
Symantec Web Security 2.5
Symantec Norton Antivirus 9.0.2
Symantec Norton Internet Security 2005
Symantec Norton System Works 2005
Symantec Brightmail Antispam 6.0.3
NA
CVE-2007-0447
Heap-based buffer overflow in the Decomposer component in multiple Symantec products allows remote malicious users to execute arbitrary code via multiple crafted CAB archives.
Symantec Mail Security 4.0
Symantec Client Security 3.0
Symantec Norton Antivirus 10.0.2.2011
Symantec Norton Antivirus 2004
Symantec Norton Internet Security 2006
Symantec Norton Internet Security 2004
Symantec Antivirus Scan Engine 5.0
Symantec Norton Antivirus 9.0.1.1.1000
Symantec Web Security 3.0.1 Build 3.01.74
Symantec Norton Antivirus 10.0.2.2001
Symantec Norton Antivirus 9.0.0
Symantec Mail Security 5.0
Symantec Brightmail Antispam 6.0.2
Symantec Norton Antivirus 2005
Symantec Norton Antivirus 10.0.1.1008
Symantec Antivirus Scan Engine 4.3
Symantec Norton Antivirus 10.1
Symantec Web Security 2.5
Symantec Norton Antivirus 9.0.2
Symantec Norton Internet Security 2005
Symantec Norton System Works 2005
Symantec Brightmail Antispam 6.0.3
NA
CVE-2004-1029
The Sun Java Plugin capability in Java 2 Runtime Environment (JRE) 1.4.2_01, 1.4.2_04, and possibly earlier versions, does not properly restrict access between Javascript and Java applets during data transfer, which allows remote malicious users to load unsafe classes and execute...
Sun Jre 1.4.0 02
Sun Jre 1.3.1 06
Symantec Enterprise Firewall 8.0
Sun Jre 1.3.1 03
Sun Jre 1.4.0 04
Sun Jdk 1.4.0 4
Sun Jdk 1.3.1 06
Sun Jdk 1.4.1 03
Sun Jre 1.4.2
Sun Jdk 1.4.2 05
Sun Jdk 1.4.0 02
Sun Jre 1.4.0 01
Sun Jdk 1.4.2
Sun Jdk 1.3.1 02
Sun Jdk 1.3.1 01
Sun Jre 1.4.1
Sun Jdk 1.4.0 03
Sun Jre 1.3.1 07
Sun Jdk 1.3.1 03
Sun Jdk 1.4.1 02
Sun Jdk 1.3.1 07
Sun Jdk 1.4
1 EDB exploit
NA
CVE-2005-3768
Buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation in Symantec Dynamic VPN Services, as used in Enterprise Firewall, Gateway Security, and Firewall /VPN Appliance products, allows remote malicious users to cause a denial of service and possibly execute ...
Symantec Enterprise Firewall 8.0
Symantec Firewall Vpn Appliance 200
Symantec Gateway Security 5400 2.0.1
Symantec Gateway Security 300 2.0
Symantec Gateway Security 5100
Symantec Gateway Security 400 2.0
Symantec Gateway Security 5310 1.0
Symantec Gateway Security 5000 Series 3.0
Symantec Gateway Security 5300 1.0
Symantec Firewall Vpn Appliance 100
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started