Vulnerabilities > F Secure > Internet Gatekeeper > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-12 | CVE-2022-28887 | Unspecified vulnerability in F-Secure products Multiple Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby the aerdl.dll unpacker handler function crashes. | 7.5 |
| 2007-05-31 | CVE-2007-2966 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in F-Secure products Buffer overflow in the LHA decompression component in F-Secure anti-virus products for Microsoft Windows and Linux before 20070529 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted LHA archive, related to an integer wrap, a similar issue to CVE-2006-4335. | 7.5 |
| 2007-05-31 | CVE-2007-2965 | Local Security vulnerability in Internet Gatekeeper Unspecified vulnerability in the Real-time Scanning component in multiple F-Secure products, including Internet Security 2005, 2006 and 2007; Anti-Virus 2005, 2006 and 2007; and Solutions based on F-Secure Protection Service for Consumers 6.40 and earlier allows local users to gain privileges via a crafted I/O request packet (IRP), related to IOCTL (Input/Output Control) and "access validation of the address space." | 7.2 |
| 2006-06-06 | CVE-2006-2838 | Denial-Of-Service vulnerability in F-Secure Anti-Virus and Internet Gatekeeper Buffer overflow in the web console in F-Secure Anti-Virus for Microsoft Exchange 6.40, and Internet Gatekeeper 6.40 through 6.42 and 6.50 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors. | 7.6 |
| 2006-01-21 | CVE-2006-0337 | Archive Handling vulnerability in F-Secure Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allows remote attackers to execute arbitrary code via crafted ZIP archives. | 7.5 |
| 2005-11-16 | CVE-2005-3546 | Local Privilege Escalation vulnerability in F-Secure Anti-Virus and Internet Gatekeeper suid.cgi scripts in F-Secure (1) Internet Gatekeeper for Linux before 2.15.484 and (2) Anti-Virus Linux Gateway before 2.16 are installed SUID with world-executable permissions, which allows local users to gain privilege. | 7.2 |
| 2005-05-02 | CVE-2005-0350 | Remote Security vulnerability in F-Secure Anti-Virus Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code via a crafted ARJ archive. | 7.5 |
| 2004-10-20 | CVE-2004-0162 | Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME encapsulation that uses RFC822 comment fields, which may be interpreted as other fields by mail clients. | 7.5 |
| 2004-10-20 | CVE-2004-0161 | Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use RFC2231 encoding, which may be interpreted differently by mail clients. | 7.5 |
| 2004-10-20 | CVE-2004-0053 | Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use fields that use RFC2047 encoding, which may be interpreted differently by mail clients. | 7.5 |