Vulnerabilities > Astaro > Security Gateway
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-07-09 | CVE-2012-3238 | Cross-Site Scripting vulnerability in multiple products Cross-site scripting (XSS) vulnerability in the Backup/Restore component in WebAdmin in Astaro Security Gateway before 8.305 allows remote attackers to inject arbitrary web script or HTML via the "Comment (optional)" field. | 4.3 |
2007-08-08 | CVE-2007-4243 | Denial-Of-Service vulnerability in Security Gateway Unspecified vulnerability in pfilter-reporter.pl in Astaro Security Gateway (ASG) 7 allows remote attackers to cause a denial of service (CPU consumption) via certain network traffic, as demonstrated by P2P and iTunes applications that download large amounts of data. | 7.8 |
2007-08-08 | CVE-2007-4242 | Security Bypass vulnerability in Astaro Security Gateway 7.0 The pop3 Proxy in Astaro Security Gateway (ASG) 7 does not perform virus scanning of attachments that exceed the maximum attachment size, and passes these attachments, which allows remote attackers to bypass this scanning via a large attachment. | 5.0 |
2007-06-18 | CVE-2007-3253 | Remote Denial of Service vulnerability in Astaro Security Gateway 7.0 Multiple unspecified vulnerabilities in Astaro Security Gateway (ASG) before 7.005 allow remote attackers to cause a denial of service via (1) certain email, which stops the SMTP Proxy during scanning; (2) certain HTTP traffic, which stops or slows down the HTTP proxy during HTTP responses containing virus scanned web pages; and (3) a disconnection during a streaming session. | 7.8 |