Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Internet_gatekeeper
(F\-Secure)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 47 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-02-22 | CVE-2020-9342 | The F-Secure AV parsing engine before 2020-02-05 allows virus-detection bypass via crafted Compression Method data in a GZIP archive. This affects versions before 17.0.605.474 (on Linux) of Cloud Protection For Salesforce, Email and Server Security, and Internet GateKeeper. | Cloud_protection_for_salesforce, Email_and_server_security, Internet_gatekeeper | 5.5 | ||
| 2011-02-18 | CVE-2011-0453 | F-Secure Internet Gatekeeper for Linux 3.x before 3.03 does not require authentication for reading access logs, which allows remote attackers to obtain potentially sensitive information via a TCP session on the admin UI port. | Internet_gatekeeper | N/A | ||
| 2010-04-15 | CVE-2010-1425 | F-Secure Internet Security 2010 and earlier; Anti-Virus for Microsoft Exchange 9 and earlier, and for MIMEsweeper 5.61 and earlier; Internet Gatekeeper for Windows 6.61 and earlier, and for Linux 4.02 and earlier; Anti-Virus 2010 and earlier; Home Server Security 2009; Protection Service for Consumers 9 and earlier, for Business - Workstation security 9 and earlier, for Business - Server Security 8 and earlier, and for E-mail and Server security 9 and earlier; Mac Protection build 8060 and... | Anti\-Virus, F\-Secure_anti\-Virus, F\-Secure_anti\-Virus_client_security, F\-Secure_anti\-Virus_for_citrix_servers, F\-Secure_anti\-Virus_for_linux, F\-Secure_anti\-Virus_for_microsoft_exchange, F\-Secure_anti\-Virus_for_mimesweeper, F\-Secure_anti\-Virus_for_windows_servers, F\-Secure_anti\-Virus_for_workstations, F\-Secure_anti\-Virus_linux_client_security, F\-Secure_anti\-Virus_linux_server_security, F\-Secure_internet_security, Home_server_security, Internet_gatekeeper | N/A | ||
| 2009-05-22 | CVE-2009-1782 | Multiple F-Secure anti-virus products, including Anti-Virus for Microsoft Exchange 7.10 and earlier; Internet Gatekeeper for Windows 6.61 and earlier, Windows 6.61 and earlier, and Linux 2.16 and earlier; Internet Security 2009 and earlier, Anti-Virus 2009 and earlier, Client Security 8.0 and earlier, and others; allow remote attackers to bypass malware detection via a crafted (1) ZIP and (2) RAR archive. | Anti\-Virus, Client_security, Home_server_security, Internet_gatekeeper, Internet_security, Linux_security | N/A | ||
| 2007-06-20 | CVE-2007-3300 | Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070619 allow remote attackers to bypass scanning via a crafted header in a (1) LHA or (2) RAR archive. | F\-Secure_anti\-Virus, F\-Secure_anti\-Virus_linux_client_security, F\-Secure_anti\-Virus_linux_server_security, F\-Secure_internet_security, Internet_gatekeeper, Solutions_based_on_f\-Secure_personal_express | N/A | ||
| 2007-05-31 | CVE-2007-2967 | Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070522 allow remote attackers to cause a denial of service (file scanning infinite loop) via certain crafted (1) ARJ archives or (2) FSG packed files. | F\-Secure_anti\-Virus, F\-Secure_anti\-Virus_client_security, F\-Secure_anti\-Virus_linux_client_security, F\-Secure_anti\-Virus_linux_server_security, F\-Secure_internet_security, F\-Secure_protection_service, Internet_gatekeeper | N/A | ||
| 2007-05-31 | CVE-2007-2966 | Buffer overflow in the LHA decompression component in F-Secure anti-virus products for Microsoft Windows and Linux before 20070529 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted LHA archive, related to an integer wrap, a similar issue to CVE-2006-4335. | F\-Secure_anti\-Virus, F\-Secure_anti\-Virus_client_security, F\-Secure_anti\-Virus_linux_client_security, F\-Secure_anti\-Virus_linux_server_security, F\-Secure_internet_security, F\-Secure_protection_service, Internet_gatekeeper | N/A | ||
| 2007-05-31 | CVE-2007-2965 | Unspecified vulnerability in the Real-time Scanning component in multiple F-Secure products, including Internet Security 2005, 2006 and 2007; Anti-Virus 2005, 2006 and 2007; and Solutions based on F-Secure Protection Service for Consumers 6.40 and earlier allows local users to gain privileges via a crafted I/O request packet (IRP), related to IOCTL (Input/Output Control) and "access validation of the address space." | F\-Secure_anti\-Virus, F\-Secure_anti\-Virus_client_security, F\-Secure_anti\-Virus_linux_client_security, F\-Secure_anti\-Virus_linux_server_security, F\-Secure_internet_security, F\-Secure_protection_service, Internet_gatekeeper | N/A | ||
| 2006-06-06 | CVE-2006-2838 | Buffer overflow in the web console in F-Secure Anti-Virus for Microsoft Exchange 6.40, and Internet Gatekeeper 6.40 through 6.42 and 6.50 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors. NOTE: By default, the connections are only allowed from the local host. | F\-Secure_anti\-Virus, Internet_gatekeeper | N/A | ||
| 2006-01-20 | CVE-2006-0338 | Multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allow remote attackers to hide arbitrary files and data via malformed (1) RAR and (2) ZIP archives, which are not properly scanned. | F\-Secure_anti\-Virus, F\-Secure_internet_security, F\-Secure_personal_express, Internet_gatekeeper | N/A |