Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
message gateway vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2015-0291
The sigalgs implementation in t1_lib.c in OpenSSL 1.0.2 prior to 1.0.2a allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) by using an invalid signature_algorithms extension in the ClientHello message during a renegotiation.
Openssl Openssl 1.0.2
3 Github repositories
2 Articles
5
CVSSv2
CVE-2014-3569
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected ...
Openssl Openssl 1.0.1j
5
CVSSv2
CVE-2014-7278
The login page on the ZyXEL SBG-3300 Security Gateway with firmware 1.00(AADY.4)C0 and previous versions allows remote malicious users to cause a denial of service (persistent web-interface outage) via JavaScript code within unspecified "welcome message" form data that ...
Zyxel Sbg3300-n Firmware
Zyxel Sbg3300-n -
5
CVSSv2
CVE-2009-3457
Cisco ACE XML Gateway (AXG) and ACE Web Application Firewall (WAF) prior to 6.1 allow remote malicious users to obtain sensitive information via an HTTP request that lacks a handler, as demonstrated by (1) an OPTIONS request or (2) a crafted GET request, leading to a Message-hand...
Cisco Ace Web Application Firewall 6.0\\(2\\)
Cisco Ace Web Application Firewall 6.0\\(1\\)
Cisco Ace Xml Gateway 6.0\\(2\\)
Cisco Ace Xml Gateway
Cisco Ace Xml Gateway 6.0\\(0\\)
Cisco Ace Xml Gateway 6.0\\(1\\)
Cisco Ace Web Application Firewall
Cisco Ace Web Application Firewall 6.0\\(0\\)
1 EDB exploit
5
CVSSv2
CVE-2005-4441
The PVLAN protocol allows remote malicious users to bypass network segmentation and spoof PVLAN traffic via a PVLAN message with a target MAC address that is set to a gateway router, which causes the packet to be sent to the router, where the source MAC is modified, aka "Mod...
Pvlan Protocol Pvlan Protocol
5
CVSSv2
CVE-2004-0081
OpenSSL 0.9.6 prior to 0.9.6d does not properly handle unknown message types, which allows remote malicious users to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1 \\(3.005\\)
Cisco Firewall Services Module
Cisco Firewall Services Module 1.1.2
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 \\(0.208\\)
Hp Aaa Server
Cisco Ciscoworks Common Management Foundation 2.1
Cisco Ciscoworks Common Services 2.2
Avaya Sg208 4.4
Avaya Sg5 4.2
Avaya Sg5 4.3
Freebsd Freebsd 5.1
Hp Hp-ux 8.05
Openbsd Openbsd 3.3
Redhat Linux 8.0
Sco Openserver 5.0.6
Avaya Sg203 4.4
Avaya Sg208
Freebsd Freebsd 4.8
5
CVSSv2
CVE-2004-0176
Multiple buffer overflows in Ethereal 0.8.13 to 0.10.2 allow remote malicious users to cause a denial of service and possibly execute arbitrary code via the (1) NetFlow, (2) IGAP, (3) EIGRP, (4) PGM, (5) IrDA, (6) BGP, (7) ISUP, or (8) TCAP dissectors.
Ethereal Group Ethereal 0.10.1
Ethereal Group Ethereal 0.9.2
Ethereal Group Ethereal 0.9.6
Ethereal Group Ethereal 0.9.5
Ethereal Group Ethereal 0.8.19
Ethereal Group Ethereal 0.10.2
Ethereal Group Ethereal 0.8.18
Ethereal Group Ethereal 0.9.14
Ethereal Group Ethereal 0.9.15
Ethereal Group Ethereal 0.9.10
Ethereal Group Ethereal 0.9.8
Ethereal Group Ethereal 0.9.16
Ethereal Group Ethereal 0.8.13
Ethereal Group Ethereal 0.9.3
Ethereal Group Ethereal 0.10
Ethereal Group Ethereal 0.9.13
Ethereal Group Ethereal 0.9.9
Ethereal Group Ethereal 0.8.14
Ethereal Group Ethereal 0.9.11
Ethereal Group Ethereal 0.9.7
Ethereal Group Ethereal 0.9.4
Ethereal Group Ethereal 0.9.1
2 EDB exploits
5
CVSSv2
CVE-2002-0560
PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote malicious users to obtain sensitive information via the OWA_UTIL stored procedures (1) OWA_UTIL.signature, (2) OWA_UTIL.listprint, or (3) OWA_UTIL.show_query_columns.
Oracle Application Server Web Cache 2.0.0.0
Oracle Application Server Web Cache 2.0.0.1
Oracle Application Server Web Cache 2.0.0.2
Oracle Application Server Web Cache 2.0.0.3
Oracle Oracle8i 8.1.7
Oracle Application Server 1.0.2
Oracle Oracle9i 9.0.1
Oracle Oracle8i 8.1.7.1
Oracle Oracle9i 9.0
5
CVSSv2
CVE-2002-0072
The w3svc.dll ISAPI filter in Front Page Server Extensions and ASP.NET for Internet Information Server (IIS) 4.0, 5.0, and 5.1 does not properly handle the error condition when a long URL is provided, which allows remote malicious users to cause a denial of service (crash) when t...
Microsoft Internet Information Server 4.0
Microsoft Internet Information Services 5.0
5
CVSSv2
CVE-1999-1515
A non-default configuration in TenFour TFS Gateway 4.0 allows an malicious user to cause a denial of service via messages with incorrect sender and recipient addresses, which causes the gateway to continuously try to return the message every 10 seconds.
Tenfour Tfs Gateway 4.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »