Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wingate vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2020-13866
WinGate v9.4.1.5998 has insecure permissions for the installation directory, which allows local users to gain privileges by replacing an executable file with a Trojan horse.
Qbik Wingate 9.4.1.5998
NA
CVE-2009-0802
Qbik WinGate, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote malicious users to bypass access controls for Flash, Java, Silverlight, and probably other technologies, and possibly communicate with rest...
Qbik Wingate 6.0.2 Build 1000
Qbik Wingate 6.0.2 Build 1001
Qbik Wingate 6.1.2
Qbik Wingate 6.0.1 Build 993
Qbik Wingate 6.2
Qbik Wingate 6.2.2
Qbik Wingate 6.1.4
Qbik Wingate 6.1
Qbik Wingate 6.1.1.1077
Qbik Wingate 6.0.0
Qbik Wingate 6.5.2
Qbik Wingate 6.0.1 Build 995
Qbik Wingate 6.0.3 Build 1005
Qbik Wingate 6.2.1
Qbik Wingate 6.1.3
NA
CVE-2008-3606
Heap-based buffer overflow in the IMAP service in Qbik WinGate 6.2.2.1137 and previous versions allows remote authenticated users to cause a denial of service (resource exhaustion) or possibly execute arbitrary code via a long argument to the LIST command. NOTE: some of these det...
Qbik Wingate 2.1
Qbik Wingate 3.0
Qbik Wingate 4.3.0
Qbik Wingate 4.5.1
Qbik Wingate 4.5.2
Qbik Wingate 5.2
Qbik Wingate 5.2.2
Qbik Wingate 6.0.2.1001
Qbik Wingate 6.0.3.1005
Qbik Wingate 6.0.4.1025
Qbik Wingate
Qbik Wingate 3.0.5
Qbik Wingate 4.0.1
Qbik Wingate 4.4.0
Qbik Wingate 5.0
Qbik Wingate 5.0.0
Qbik Wingate 5.2.3
Qbik Wingate 6.0
Qbik Wingate 6.1.1.1077
Qbik Wingate 6.1.2.1094
Qbik Wingate 4.1.0
Qbik Wingate 4.1.1
1 EDB exploit
NA
CVE-2007-4335
Format string vulnerability in the SMTP server component in Qbik WinGate 5.x and 6.x prior to 6.2.2 allows remote malicious users to cause a denial of service (service crash) via format string specifiers in certain unexpected commands, which trigger a crash during error logging.
Qbik Wingate 5.0
Qbik Wingate 6.0
Qbik Wingate
NA
CVE-2006-4518
Qbik WinGate 6.1.4 and previous versions allows remote malicious users to cause a denial of service (CPU consumption) via a DNS request with a self-referencing compressed name pointer, which triggers an infinite loop.
Qbik Wingate
NA
CVE-2006-2917
Directory traversal vulnerability in the IMAP server in WinGate 6.1.2.1094 and 6.1.3.1096, and possibly other versions prior to 6.1.4 Build 1099, allows remote authenticated users to read email of other users, or perform unauthorized operations on directories, via the (1) CREATE,...
Qbik Wingate 6.1.2.1094
Qbik Wingate 6.1.3.1096
NA
CVE-2006-2926
Stack-based buffer overflow in the WWW Proxy Server of Qbik WinGate 6.1.1.1077 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long URL HTTP request.
Qbik Wingate 6.1.1.1077
2 EDB exploits
NA
CVE-2004-0789
Multiple implementations of the DNS protocol, including (1) Poslib 1.0.2-1 and previous versions as used by Posadis, (2) Axis Network products before firmware 3.13, and (3) Men & Mice Suite 2.2x prior to 2.2.3 and 3.5.x prior to 3.5.2, allow remote malicious users to cause a ...
Delegate Delegate 7.8.1
Delegate Delegate 7.8.2
Delegate Delegate 8.9.1
Delegate Delegate 8.9.2
Dnrd Dnrd 1.3
Dnrd Dnrd 1.4
Dnrd Dnrd 2.0
Dnrd Dnrd 2.6
Dnrd Dnrd 2.7
Don Moore Mydns 0.9
Maradns Maradns 0.5.28
Posadis Posadis 0.50.6
Posadis Posadis 0.50.7
Qbik Wingate 3.0
Qbik Wingate 4.0.1
Delegate Delegate 7.7.1
Delegate Delegate 7.8.0
Delegate Delegate 8.5.0
Delegate Delegate 8.9
Dnrd Dnrd 1.1
Dnrd Dnrd 1.2
Dnrd Dnrd 2.4
NA
CVE-2004-0577
WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote malicious users to read arbitrary files from the root directory via a URL request to the wingate-internal directory.
Qbik Wingate 6.0 Beta 2
Qbik Wingate 5.0.5
Qbik Wingate 5.2.3
NA
CVE-2004-0578
WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote malicious users to read arbitrary files via leading slash (//) characters in a URL request to the wingate-internal directory.
Qbik Wingate 5.0.5
Qbik Wingate 5.2.3
Qbik Wingate 6.0 Beta 2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »