client firewall vulnerabilities and exploits

(subscribe to this query)

7.5

CVSSv2

The rate limiting feature in NTP 4.x prior to 4.2.8p4 and 4.3.x prior to 4.3.77 allows remote malicious users to have unspecified impact via a large number of crafted requests.

Ntp Ntp Ntp Ntp 4.2.8 Netapp Oncommand Performance Manager -Netapp Oncommand Unified Manager -Netapp Clustered Data Ontap -Netapp Data Ontap -Citrix Xenserver 6.0.2 Citrix Xenserver 6.2.0 Citrix Xenserver 6.5 Citrix Xenserver 7.0 Siemens Tim 4r-ie Firmware Siemens Tim 4r-ie Dnp3 Firmware

7.5

CVSSv2

The Internet Key Exchange version 1 (IKEv1) implementation in Clavister Client Web allows remote malicious users to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the l...

Clavister Clavister Security Gateway 8.40.05 Clavister Clavister Security Gateway 8.50.02 Clavister Clavister Security Gateway 8.60.01 Rc1 Clavister Clavister Firewall 8.30.01

7.5

CVSSv2

Shorewall 2.4.x prior to 2.4.1, 2.2.x prior to 2.2.5, and 2.0.x prior to 2.0.17, when MACLIST_TTL is greater than 0 or MACLIST_DISPOSITION is set to ACCEPT, allows remote attackers with an accepted MAC address to bypass other firewall rules or policies.

7.5

CVSSv2

OpenSSH 3.6.1 and previous versions, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote malicious users to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose r...

Openbsd Openssh 3.6.1

7.5

CVSSv2

IRC connection tracking helper module in the netfilter subsystem for Linux 2.4.18-pre9 and previous versions does not properly set the mask for conntrack expectations for incoming DCC connections, which could allow remote malicious users to bypass intended firewall restrictions.

Linux Linux Kernel

7.5

CVSSv2

Check Point VPN-1/FireWall-1 4.1 and previous versions improperly retransmits encapsulated FWS packets, even if they do not come from a valid FWZ client, aka "Retransmission of Encapsulated Packets."

Checkpoint Firewall-1 3.0 Checkpoint Firewall-1 4.0 Checkpoint Firewall-1 4.1

7.5

CVSSv2

Checkpoint Firewall-1 with the RSH/REXEC setting enabled allows remote malicious users to bypass access restrictions and connect to a RSH/REXEC client via malformed connection requests.

Checkpoint Firewall-1 4.0 Checkpoint Firewall-1 4.1 Checkpoint Firewall-1 3.0

7.2

CVSSv2

Comodo GeekBuddy prior to 4.18.121 does not restrict access to the VNC server, which allows local users to gain privileges by connecting to the server.

Comodo Geekbuddy

1 EDB exploit

7.2

CVSSv2

Infotecs ViPNet Client 3.2.10 (15632) and previous versions, ViPNet Coordinator 3.2.10 (15632) and previous versions, ViPNet Personal Firewall 3.1 and previous versions, and ViPNet SafeDisk 4.1 (0.5643) and previous versions use weak permissions (Everyone: Full Control) for a fol...

Infotecs Vipnet Client Infotecs Vipnet Coordinator Infotecs Vipnet Personal Firewall Infotecs Vipnet Safedisk

7.2

CVSSv2

Agnitum Outpost Firewall Pro 3.51.759.6511 (462), as used in (1) Lavasoft Personal Firewall 1.0.543.5722 (433) and (2) Novell BorderManager Novell Client Firewall 2.0, does not properly restrict user activities in application windows that run in a LocalSystem context, which allow...

Lavasoft Lavasoft Personal Firewall 1.0.543.5722.433 Novell Client Firewall 2.0 Agnitum Outpost Firewall 3.51.759.6511

Get Started

« PREV 1 2 3 4 5 6 7 8 9 10 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook