firewall vulnerabilities and exploits

(subscribe to this query)

5

CVSSv2

Cisco PIX firewall 6.2.x through 6.2.3, when configured as a VPN Client, allows remote attackers to cause a denial of service (dropped IPSec tunnel connection) via an IKE Phase I negotiation request to the outside interface of the firewall....

Cisco Pix Firewall 6.2.2 .111 Cisco Pix Firewall Software 6.2 Cisco Pix Firewall Software 6.2\\(1\\)Cisco Pix Firewall Software 6.2\\(2\\)Cisco Pix Firewall Software 6.2\\(3\\)Cisco Pix Firewall Software 6.2\\(3.100\\)

6.8

CVSSv2

Cisco PIX 500 Series Security Appliances and ASA 5500 Series Adaptive Security Appliances, when running 7.0(x) up to 7.0(5) and 7.1(x) up to 7.1(2.4), and Firewall Services Module (FWSM) 3.1(x) up to 3.1(1.6), causes the EXEC password, local user passwords, and the enable...

Cisco Pix Firewall 525 Cisco Pix Firewall 535 Cisco Pix Firewall 506 Cisco Pix Firewall 515 Cisco Pix Firewall Software 6.3 Cisco Pix Firewall 501 Cisco Pix Firewall 515e Cisco Pix Firewall 520 Cisco Adaptive Security Appliance

7.5

CVSSv2

The OPSEC communications authentication mechanism (fwn1) in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to spoof connections, aka the "OPSEC Authentication Vulnerability."...

Checkpoint Firewall-1 3.0 Checkpoint Firewall-1 4.0 Checkpoint Firewall-1 4.1

7.5

CVSSv2

The seed generation mechanism in the inter-module S/Key authentication mechanism in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to bypass authentication via a brute force attack, aka "One-time (s/key) Password Authentication."...

Checkpoint Firewall-1 4.1 Checkpoint Firewall-1 3.0 Checkpoint Firewall-1 4.0

7.5

CVSSv2

Check Point Firewall-1 session agent 3.0 through 4.1 generates different error messages for invalid user names versus invalid passwords, which allows remote attackers to determine valid usernames and guess a password via a brute force attack....

Checkpoint Firewall-1 3.0 Checkpoint Firewall-1 4.0 Checkpoint Firewall-1 4.12 EDB exploits available

6.2

CVSSv2

Check Point FireWall-1 3.0b through 4.1 for Solaris allows local users to overwrite arbitrary files via a symlink attack on temporary policy files that end in a .cpp extension, which are set world-writable....

Checkpoint Firewall-1 4.1 Checkpoint Firewall-1 3.0 Checkpoint Firewall-1 4.0

7.5

CVSSv2

Checkpoint Firewall-1 with the RSH/REXEC setting enabled allows remote attackers to bypass access restrictions and connect to a RSH/REXEC client via malformed connection requests....

Checkpoint Firewall-1 4.0 Checkpoint Firewall-1 4.1 Checkpoint Firewall-1 3.0

4.9

CVSSv2

Unrestricted critical resource lock in Agnitum Outpost Firewall PRO 4.0 1007.591.145 and earlier allows local users to cause a denial of service (system hang) by capturing the outpost_ipc_hdr mutex....

Agnitum Outpost Firewall 4.0 Agnitum Outpost Firewall 4.0 1007.591.145 Agnitum Outpost Firewall 4.0 964.582.0591 EDB exploit available

5

CVSSv2

Firewall-1 3.0 and 4.0 leaks packets with private IP address information, which could allow remote attackers to determine the real IP address of the host that is making the connection....

Checkpoint Firewall-1 3.0 Checkpoint Firewall-1 4.0 Checkpoint Firewall-1 4.1

7.5

CVSSv2

Check Point Firewall-1 allows remote attackers to bypass port access restrictions on an FTP server by forcing it to send malicious packets that Firewall-1 misinterprets as a valid 227 response to a client's PASV attempt....

Checkpoint Firewall-1 3.0 Cisco Pix Firewall Software 4.1\\(6\\)Cisco Pix Firewall Software 4.2\\(1\\)Cisco Pix Firewall Software 4.2\\(2\\)Cisco Pix Firewall Software 4.3 Cisco Pix Firewall Software 4.4\\(4\\)Checkpoint Firewall-1 4.0 Cisco Pix Firewall Software 4.1\\(6b\\)Cisco Pix Firewall Software 5.0

Get Started

« PREV 1 2 3 4 5 6 7 8 9 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook