Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec gateway security 5400 2.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2004-0192
Cross-site scripting (XSS) vulnerability in the Management Service for Symantec Gateway Security 2.0 allows remote malicious users to steal cookies and hijack a management session via a /sgmi URL that contains malicious script, which is not quoted in the resulting error page.
Symantec Gateway Security 5400 2.0
1 EDB exploit
NA
CVE-2005-0817
Unknown vulnerability in the DNSd proxy, as used in Symantec Gateway Security 5400 2.x and 5300 1.x, Enterprise Firewall 7.0.x and 8.x, and VelociRaptor 1100/1200/1300 1.5, allows remote malicious users to poison the DNS cache and redirect users to malicious sites.
Symantec Velociraptor Model 1300
Symantec Enterprise Firewall 7.0
Symantec Enterprise Firewall 8.0
Symantec Gateway Security 5300 1.0
Symantec Gateway Security 5400 2.0
NA
CVE-2004-0369
Buffer overflow in Entrust LibKmp ISAKMP library, as used by Symantec Enterprise Firewall 7.0 up to and including 8.0, Gateway Security 5300 1.0, Gateway Security 5400 2.0, and VelociRaptor 1.5, allows remote malicious users to execute arbitrary code via a crafted ISAKMP payload.
Symantec Velociraptor 1.5
Symantec Enterprise Firewall 7.0.4
Symantec Enterprise Firewall 7.0
Entrust Entrust Libkmp Isakmp Library
Symantec Enterprise Firewall 8.0
Symantec Gateway Security 5300 1.0
Symantec Gateway Security 5400 2.0
NA
CVE-2007-3699
The Decomposer component in multiple Symantec products allows remote malicious users to cause a denial of service (infinite loop) via a certain value in the PACK_SIZE field of a RAR archive file header.
Symantec Antivirus Scan Engine 4.0
Symantec Antivirus Scan Engine 4.3.12
Symantec Antivirus Scan Engine 4.3
Symantec Brightmail Antispam 6.0.2
Symantec Brightmail Antispam 6.0.3
Symantec Client Security 2.0.4
Symantec Client Security 2.0.5 Build 1100 Mp1
Symantec Client Security 3.0.1.1007
Symantec Client Security 3.0.1.1008
Symantec Client Security 3.0.2.2021
Symantec Client Security 3.1
Symantec Mail Security 4.0
Symantec Mail Security 4.1
Symantec Mail Security 4.5.4.743
Symantec Mail Security 4.6 Build 97
Symantec Mail Security 5.0.0.204
Symantec Norton Antivirus 10.0.0.359
Symantec Norton Antivirus 10.0.0
Symantec Norton Antivirus 10.0.2.2010
Symantec Norton Antivirus 10.0.2.2011
Symantec Norton Antivirus 10.1.4.4010
Symantec Norton Antivirus 10.1.4
NA
CVE-2007-0447
Heap-based buffer overflow in the Decomposer component in multiple Symantec products allows remote malicious users to execute arbitrary code via multiple crafted CAB archives.
Symantec Antivirus Scan Engine 4.3.12
Symantec Antivirus Scan Engine 4.3
Symantec Brightmail Antispam 6.0.1
Symantec Brightmail Antispam 6.0.2
Symantec Client Security 2.0.4
Symantec Client Security 3.0.1.1001
Symantec Client Security 3.0.1.1007
Symantec Client Security 3.0.2.2020
Symantec Client Security 3.0.2.2021
Symantec Mail Security 4.0
Symantec Mail Security 4.1
Symantec Mail Security 4.6.3
Symantec Mail Security 4.6 Build 97
Symantec Norton Antivirus
Symantec Norton Antivirus 10.0.0.359
Symantec Norton Antivirus 10.0.2.2002
Symantec Norton Antivirus 10.0.2.2010
Symantec Norton Antivirus 10.1.396
Symantec Norton Antivirus 10.1.4.4010
Symantec Norton Antivirus 2004
Symantec Norton Antivirus 2005
Symantec Norton Antivirus 9.0.1.1.1000
NA
CVE-2004-1029
The Sun Java Plugin capability in Java 2 Runtime Environment (JRE) 1.4.2_01, 1.4.2_04, and possibly earlier versions, does not properly restrict access between Javascript and Java applets during data transfer, which allows remote malicious users to load unsafe classes and execute...
Hp Java Sdk-rte 1.3
Sun Jdk 1.3.1 02
Sun Jdk 1.3.1 03
Sun Jdk 1.3.1 06
Sun Jdk 1.4.0 02
Sun Jdk 1.4.0 03
Sun Jdk 1.4.1
Sun Jdk 1.4.1 03
Sun Jdk 1.4.2 03
Sun Jdk 1.4
Sun Jre 1.3.0
Sun Jre 1.3.1
Sun Jre 1.3.1 02
Sun Jre 1.3.1 05
Sun Jre 1.3.1 06
Sun Jre 1.3.1 09
Sun Jre 1.4.0 03
Sun Jre 1.4.1
Sun Jre 1.4.1 07
Sun Jre 1.4.2
Conectiva Linux 10.0
Sun Jdk 1.3.1 05
1 EDB exploit
NA
CVE-2005-3768
Buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation in Symantec Dynamic VPN Services, as used in Enterprise Firewall, Gateway Security, and Firewall /VPN Appliance products, allows remote malicious users to cause a denial of service and possibly execute ...
Symantec Enterprise Firewall 8.0
Symantec Gateway Security 5300 1.0
Symantec Gateway Security 5310 1.0
Symantec Firewall Vpn Appliance 100
Symantec Gateway Security 5400 2.0.1
Symantec Firewall Vpn Appliance 200
Symantec Gateway Security 300 2.0
Symantec Gateway Security 400 2.0
Symantec Gateway Security 5000 Series 3.0
Symantec Gateway Security 5100
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started