Vulnerabilities > Fortinet

DATE	CVE	VULNERABILITY TITLE	RISK
2012-03-21	CVE-2012-1442	Permissions, Privileges, and Access Controls vulnerability in multiple products The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, eSafe 7.0.17.0, Kaspersky Anti-Virus 7.0.0.125, F-Secure Anti-Virus 9.0.16160.0, Sophos Anti-Virus 4.61.0, Antiy Labs AVL SDK 2.0.3.7, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified class field. network aladdin antiy cat f-secure fortinet kaspersky mcafee pandasecurity rising-global sophos CWE-264	4.3
2012-03-21	CVE-2012-1440	Permissions, Privileges, and Access Controls vulnerability in multiple products The ELF file parser in Norman Antivirus 6.06.12, eSafe 7.0.17.0, CA eTrust Vet Antivirus 36.1.8511, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified identsize field. network aladdin ca fortinet norman pandasecurity CWE-264	4.3
2012-03-21	CVE-2012-1439	Permissions, Privileges, and Access Controls vulnerability in multiple products The ELF file parser in eSafe 7.0.17.0, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified padding field. network aladdin fortinet pandasecurity rising-global CWE-264	4.3
2012-03-21	CVE-2012-1425	Permissions, Privileges, and Access Controls vulnerability in multiple products The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, Quick Heal (aka Cat QuickHeal) 11.00, Emsisoft Anti-Malware 5.1.0.1, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, and Trend Micro HouseCall 9.120.0.1004 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial \50\4B\03\04 character sequence. network antiy avira cat emsisoft eset fortinet ikarus jiangmin kaspersky mcafee norman pc-tools symantec trendmicro CWE-264	4.3
2012-03-21	CVE-2012-1423	Permissions, Privileges, and Access Controls vulnerability in multiple products The TAR file parser in Command Antivirus 5.2.11.5, Emsisoft Anti-Malware 5.1.0.1, F-Prot Antivirus 4.6.2.117, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, K7 AntiVirus 9.77.3565, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, and VirusBuster 13.6.151.0 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial MZ character sequence. network authentium emsisoft eset f-prot fortinet ikarus k7computing norman pc-tools rising-global virusbuster CWE-264	4.3
2012-03-21	CVE-2012-1420	Permissions, Privileges, and Access Controls vulnerability in multiple products The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, F-Prot Antivirus 4.6.2.117, Fortinet Antivirus 4.2.254.0, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, Panda Antivirus 10.0.2.7, and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial \7fELF character sequence. network authentium cat eset f-prot fortinet k7computing kaspersky microsoft norman pandasecurity rising-global CWE-264	4.3
2009-09-04	CVE-2008-7161	Permissions, Privileges, and Access Controls vulnerability in Fortinet Fortigate-1000 3.00 Fortinet FortiGuard Fortinet FortiGate-1000 3.00 build 040075,070111 allows remote attackers to bypass URL filtering via fragmented GET or POST requests that use HTTP/1.0 without the Host header. network low complexity fortinet CWE-264	7.5
2009-04-07	CVE-2009-1262	USE of Externally-Controlled Format String vulnerability in Fortinet Forticlient 3.0.614 Format string vulnerability in Fortinet FortiClient 3.0.614, and possibly earlier, allows local users to execute arbitrary code via format string specifiers in the VPN connection name. local low complexity fortinet CWE-134	7.2
2008-12-12	CVE-2008-5531	Improper Input Validation vulnerability in Fortinet Fortiguard Antivirus 3.113.0.0 Fortinet Antivirus 3.113.0.0, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt extension, or (3) a .jpg extension, as demonstrated by a document containing a CVE-2006-5745 exploit. network fortinet microsoft CWE-20 critical	9.3
2008-02-14	CVE-2008-0779	Permissions, Privileges, and Access Controls vulnerability in Fortinet Forticlient Host Security The fortimon.sys device driver in Fortinet FortiClient Host Security 3.0 MR5 Patch 3 and earlier does not properly initialize its DeviceExtension, which allows local users to access kernel memory and execute arbitrary code via a crafted request. local low complexity fortinet CWE-264	7.2

Vulnerabilities > Fortinet {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Fortinet"}]}

Vulnerabilities > Fortinet