Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec web gateway vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-0299
The file-management scripts in the management GUI in Symantec Web Gateway 5.0.x prior to 5.0.3 allow remote malicious users to upload arbitrary code to a designated pathname, and possibly execute this code, via unspecified vectors.
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0
1 EDB exploit
NA
CVE-2011-0549
SQL injection vulnerability in forget.php in the management GUI in Symantec Web Gateway 4.5.x allows remote malicious users to execute arbitrary SQL commands via the username parameter.
Symantec Web Gateway 4.5.3.38
Symantec Web Gateway 4.5.2.72
Symantec Web Gateway 4.5.2.65
Symantec Web Gateway 4.5.2.37
Symantec Web Gateway 4.5.1.44
Symantec Web Gateway 4.5.1.34
Symantec Web Gateway 4.5
Symantec Web Gateway 4.5.4.9
Symantec Web Gateway 4.5.0.326
NA
CVE-2010-0115
SQL injection vulnerability in login.php in the GUI management console in Symantec Web Gateway 4.5 prior to 4.5.0.376 allows remote malicious users to execute arbitrary SQL commands via the USERNAME parameter.
Symantec Web Gateway 4.5.0.325
Symantec Web Gateway 4.5.0.326
Symantec Web Gateway 4.5.0.327
Symantec Web Gateway 4.5
NA
CVE-2009-0063
Cross-site scripting (XSS) vulnerability in the Control Center in Symantec Brightmail Gateway Appliance prior to 8.0.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Symantec Brightmail Gateway Appliance
Symantec Brightmail Gateway Appliance 7.7
Symantec Brightmail Gateway Appliance 7.6
Symantec Brightmail Gateway Appliance 7.5
NA
CVE-2007-0447
Heap-based buffer overflow in the Decomposer component in multiple Symantec products allows remote malicious users to execute arbitrary code via multiple crafted CAB archives.
Symantec Antivirus Scan Engine 4.3.12
Symantec Antivirus Scan Engine 4.3
Symantec Brightmail Antispam 6.0.1
Symantec Brightmail Antispam 6.0.2
Symantec Client Security 2.0.4
Symantec Client Security 3.0.1.1001
Symantec Client Security 3.0.1.1007
Symantec Client Security 3.0.2.2020
Symantec Client Security 3.0.2.2021
Symantec Mail Security 4.0
Symantec Mail Security 4.1
Symantec Mail Security 4.6.3
Symantec Mail Security 4.6 Build 97
Symantec Norton Antivirus
Symantec Norton Antivirus 10.0.0.359
Symantec Norton Antivirus 10.0.2.2002
Symantec Norton Antivirus 10.0.2.2010
Symantec Norton Antivirus 10.1.396
Symantec Norton Antivirus 10.1.4.4010
Symantec Norton Antivirus 2004
Symantec Norton Antivirus 2005
Symantec Norton Antivirus 9.0.1.1.1000
NA
CVE-2007-3699
The Decomposer component in multiple Symantec products allows remote malicious users to cause a denial of service (infinite loop) via a certain value in the PACK_SIZE field of a RAR archive file header.
Symantec Antivirus Scan Engine 4.0
Symantec Antivirus Scan Engine 4.3.12
Symantec Antivirus Scan Engine 4.3
Symantec Brightmail Antispam 6.0.2
Symantec Brightmail Antispam 6.0.3
Symantec Client Security 2.0.4
Symantec Client Security 2.0.5 Build 1100 Mp1
Symantec Client Security 3.0.1.1007
Symantec Client Security 3.0.1.1008
Symantec Client Security 3.0.2.2021
Symantec Client Security 3.1
Symantec Mail Security 4.0
Symantec Mail Security 4.1
Symantec Mail Security 4.5.4.743
Symantec Mail Security 4.6 Build 97
Symantec Mail Security 5.0.0.204
Symantec Norton Antivirus 10.0.0.359
Symantec Norton Antivirus 10.0.0
Symantec Norton Antivirus 10.0.2.2010
Symantec Norton Antivirus 10.0.2.2011
Symantec Norton Antivirus 10.1.4.4010
Symantec Norton Antivirus 10.1.4
NA
CVE-2004-1029
The Sun Java Plugin capability in Java 2 Runtime Environment (JRE) 1.4.2_01, 1.4.2_04, and possibly earlier versions, does not properly restrict access between Javascript and Java applets during data transfer, which allows remote malicious users to load unsafe classes and execute...
Hp Java Sdk-rte 1.3
Sun Jdk 1.3.1 02
Sun Jdk 1.3.1 03
Sun Jdk 1.3.1 06
Sun Jdk 1.4.0 02
Sun Jdk 1.4.0 03
Sun Jdk 1.4.1
Sun Jdk 1.4.1 03
Sun Jdk 1.4.2 03
Sun Jdk 1.4
Sun Jre 1.3.0
Sun Jre 1.3.1
Sun Jre 1.3.1 02
Sun Jre 1.3.1 05
Sun Jre 1.3.1 06
Sun Jre 1.3.1 09
Sun Jre 1.4.0 03
Sun Jre 1.4.1
Sun Jre 1.4.1 07
Sun Jre 1.4.2
Conectiva Linux 10.0
Sun Jdk 1.3.1 05
1 EDB exploit
NA
CVE-2005-0249
Heap-based buffer overflow in the DEC2EXE module for Symantec AntiVirus Library allows remote malicious users to execute arbitrary code via a UPX compressed file containing a negative virtual offset to a crafted PE header.
Symantec Client Security 1.0.1 Build 8.01.464
Symantec Client Security 1.0.1 Build 8.01.471
Symantec Client Security 1.1.1 Mr1 Build 8.1.1.314a
Symantec Client Security 1.1.1 Mr2 Build 8.1.1.319
Symantec Norton Antivirus 8.1.1.323
Symantec Norton Antivirus 8.1.1.329
Symantec Norton Antivirus 8.1.1 Build8.1.1.314a
Symantec Norton Antivirus 8.01.434
Symantec Web Security 3.01.59
Symantec Web Security 3.01.60
Symantec Web Security 3.01.61
Symantec Web Security 3.01.62
Symantec Client Security 1.0.1 Build 8.01.446
Symantec Client Security 1.0.1 Build 8.01.460
Symantec Client Security 1.1.1 Mr3 Build 8.1.1.323
Symantec Client Security 1.1.1 Mr5 Build 8.1.1.336
Symantec Gateway Security 2.0
Symantec Mail Security 4.1
Symantec Norton Antivirus 2.18 Build 83
Symantec Norton Antivirus 8.01.446
Symantec Norton Antivirus 8.01.460
Symantec Sav Filter Domino Nt Ports Build3.0.5
NA
CVE-2004-0081
OpenSSL 0.9.6 prior to 0.9.6d does not properly handle unknown message types, which allows remote malicious users to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1 \\(3.005\\)
Cisco Firewall Services Module
Cisco Firewall Services Module 1.1.2
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 \\(0.208\\)
Hp Aaa Server
Cisco Ciscoworks Common Management Foundation 2.1
Cisco Ciscoworks Common Services 2.2
Avaya Sg208 4.4
Avaya Sg5 4.2
Avaya Sg5 4.3
Freebsd Freebsd 5.1
Hp Hp-ux 8.05
Openbsd Openbsd 3.3
Redhat Linux 8.0
Sco Openserver 5.0.6
Avaya Sg203 4.4
Avaya Sg208
Freebsd Freebsd 4.8
NA
CVE-2004-0112
The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote malicious users to cause a denial of service (crash) via a crafted SSL/TLS handshak...
Cisco Firewall Services Module
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1.2
Hp Aaa Server
Cisco Firewall Services Module 1.1 \\(3.005\\)
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 \\(0.208\\)
Avaya Sg203 4.4
Hp Hp-ux 11.11
Redhat Enterprise Linux Desktop 3.0
Hp Hp-ux 11.23
Cisco Ciscoworks Common Management Foundation 2.1
Freebsd Freebsd 5.1
Avaya Sg208 4.4
Redhat Enterprise Linux 3.0
Avaya Sg200 4.4
Avaya Sg5 4.4
Redhat Linux 7.2
Cisco Ciscoworks Common Services 2.2
Openbsd Openbsd 3.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
NEXT »