Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Internet_gatekeeper
(F\-Secure)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 47 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2007-05-31 | CVE-2007-2965 | Unspecified vulnerability in the Real-time Scanning component in multiple F-Secure products, including Internet Security 2005, 2006 and 2007; Anti-Virus 2005, 2006 and 2007; and Solutions based on F-Secure Protection Service for Consumers 6.40 and earlier allows local users to gain privileges via a crafted I/O request packet (IRP), related to IOCTL (Input/Output Control) and "access validation of the address space." | F\-Secure_anti\-Virus, F\-Secure_anti\-Virus_client_security, F\-Secure_anti\-Virus_linux_client_security, F\-Secure_anti\-Virus_linux_server_security, F\-Secure_internet_security, F\-Secure_protection_service, Internet_gatekeeper | N/A | ||
| 2006-06-06 | CVE-2006-2838 | Buffer overflow in the web console in F-Secure Anti-Virus for Microsoft Exchange 6.40, and Internet Gatekeeper 6.40 through 6.42 and 6.50 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors. NOTE: By default, the connections are only allowed from the local host. | F\-Secure_anti\-Virus, Internet_gatekeeper | N/A | ||
| 2006-01-20 | CVE-2006-0338 | Multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allow remote attackers to hide arbitrary files and data via malformed (1) RAR and (2) ZIP archives, which are not properly scanned. | F\-Secure_anti\-Virus, F\-Secure_internet_security, F\-Secure_personal_express, Internet_gatekeeper | N/A | ||
| 2006-01-20 | CVE-2006-0337 | Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allows remote attackers to execute arbitrary code via crafted ZIP archives. | F\-Secure_anti\-Virus, F\-Secure_internet_security, Internet_gatekeeper, Solutions_based_on_f\-Secure_personal_express | N/A | ||
| 2005-11-16 | CVE-2005-3546 | suid.cgi scripts in F-Secure (1) Internet Gatekeeper for Linux before 2.15.484 and (2) Anti-Virus Linux Gateway before 2.16 are installed SUID with world-executable permissions, which allows local users to gain privilege. | F\-Secure_anti\-Virus, Internet_gatekeeper | N/A | ||
| 2005-11-02 | CVE-2005-3468 | Directory traversal vulnerability in F-Secure Anti-Virus for Microsoft Exchange 6.40 and Internet Gatekeeper 6.40 to 6.42 allows limited remote attackers to bypass Web Console authentication and read files. | F\-Secure_anti\-Virus, Internet_gatekeeper | N/A | ||
| 2005-05-02 | CVE-2005-0350 | Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code via a crafted ARJ archive. | F\-Secure_anti\-Virus, F\-Secure_internet_security, F\-Secure_personal_express, Internet_gatekeeper | N/A | ||
| 2004-12-31 | CVE-2004-2442 | Multiple interpretation error in various F-Secure Anti-Virus products, including Workstation 5.43 and earlier, Windows Servers 5.50 and earlier, MIMEsweeper 5.50 and earlier, Anti-Virus for Linux Servers and Gateways 4.61 and earlier, and other products, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on the target system. | F\-Secure_anti\-Virus, F\-Secure_for_firewalls, F\-Secure_internet_security, F\-Secure_personal_express, Internet_gatekeeper | N/A | ||
| 2004-12-31 | CVE-2004-2405 | Buffer overflow in multiple F-Secure Anti-Virus products, including F-Secure Anti-Virus 5.42 and earlier, allows remote attackers to bypass scanning or cause a denial of service (crash or module restart), depending on the product, via a malformed LHA archive. | F\-Secure_anti\-Virus, F\-Secure_for_firewalls, F\-Secure_internet_security, Internet_gatekeeper | N/A | ||
| 2004-09-09 | CVE-2004-0830 | The Content Scanner Server in F-Secure Anti-Virus for Microsoft Exchange 6.21 and earlier, F-Secure Anti-Virus for Microsoft Exchange 6.01 and earlier, and F-Secure Internet Gatekeeper 6.32 and earlier allow remote attackers to cause a denial of service (service crash due to unhandled exception) via a certain malformed packet. | F\-Secure_anti\-Virus, F\-Secure_content_scanner_server, Internet_gatekeeper | N/A |