Vulnerabilities > F Secure > Internet Gatekeeper
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-01-21 | CVE-2006-0338 | Archive Handling vulnerability in F-Secure Multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allow remote attackers to hide arbitrary files and data via malformed (1) RAR and (2) ZIP archives, which are not properly scanned. | 5.0 |
2006-01-21 | CVE-2006-0337 | Archive Handling vulnerability in F-Secure Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allows remote attackers to execute arbitrary code via crafted ZIP archives. | 7.5 |
2005-11-16 | CVE-2005-3546 | Local Privilege Escalation vulnerability in F-Secure Anti-Virus and Internet Gatekeeper suid.cgi scripts in F-Secure (1) Internet Gatekeeper for Linux before 2.15.484 and (2) Anti-Virus Linux Gateway before 2.16 are installed SUID with world-executable permissions, which allows local users to gain privilege. | 7.2 |
2005-11-02 | CVE-2005-3468 | Directory Traversal vulnerability in F-Secure Anti-Virus and Internet Gatekeeper Directory traversal vulnerability in F-Secure Anti-Virus for Microsoft Exchange 6.40 and Internet Gatekeeper 6.40 to 6.42 allows limited remote attackers to bypass Web Console authentication and read files. | 5.0 |
2005-05-02 | CVE-2005-0350 | Remote Security vulnerability in F-Secure Anti-Virus Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code via a crafted ARJ archive. | 7.5 |
2004-12-31 | CVE-2004-2442 | Unspecified vulnerability in F-Secure products Multiple interpretation error in various F-Secure Anti-Virus products, including Workstation 5.43 and earlier, Windows Servers 5.50 and earlier, MIMEsweeper 5.50 and earlier, Anti-Virus for Linux Servers and Gateways 4.61 and earlier, and other products, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on the target system. | 5.0 |
2004-12-31 | CVE-2004-2405 | Denial-Of-Service vulnerability in F-Secure Anti-Virus Buffer overflow in multiple F-Secure Anti-Virus products, including F-Secure Anti-Virus 5.42 and earlier, allows remote attackers to bypass scanning or cause a denial of service (crash or module restart), depending on the product, via a malformed LHA archive. | 6.4 |
2004-10-20 | CVE-2004-0162 | Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME encapsulation that uses RFC822 comment fields, which may be interpreted as other fields by mail clients. | 7.5 |
2004-10-20 | CVE-2004-0161 | Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use RFC2231 encoding, which may be interpreted differently by mail clients. | 7.5 |
2004-10-20 | CVE-2004-0053 | Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use fields that use RFC2047 encoding, which may be interpreted differently by mail clients. | 7.5 |