Vulnerabilities > Ingate > Ingate Firewall

DATE CVE VULNERABILITY TITLE RISK
2008-06-10 CVE-2008-0960 Improper Authentication vulnerability in Juniper Session and Resource Control and SRC PE
SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; (2) UCD-SNMP; (3) eCos; (4) Juniper Session and Resource Control (SRC) C-series 1.0.0 through 2.0.0; (5) NetApp (aka Network Appliance) Data ONTAP 7.3RC1 and 7.3RC2; (6) SNMP Research before 16.2; (7) multiple Cisco IOS, CatOS, ACE, and Nexus products; (8) Ingate Firewall 3.1.0 and later and SIParator 3.1.0 and later; (9) HP OpenView SNMP Emanate Master Agent 15.x; and possibly other products relies on the client to specify the HMAC length, which makes it easier for remote attackers to bypass SNMP authentication via a length value of 1, which only checks the first byte.
network
low complexity
cisco ecos-sourceware net-snmp sun ingate juniper CWE-287
critical
10.0
2007-11-22 CVE-2007-6099 Denial-Of-Service vulnerability in Ingate Siparator
Unspecified vulnerability in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 might leave "media pinholes" open upon a restart of the SIP module, which might make it easier for remote attackers to conduct unauthorized activities.
network
low complexity
ingate
critical
10.0
2007-11-22 CVE-2007-6098 Multiple vulnerability in Ingate Firewall And SIParator
Ingate Firewall before 4.6.0 and SIParator before 4.6.0 do not log truncated (1) ICMP, (2) UDP, and (3) TCP packets, which has unknown impact and remote attack vectors; and do not log (4) serial-console login attempts with nonexistent usernames, which might make it easier for attackers with physical access to guess valid login credentials while avoiding detection.
network
low complexity
ingate
7.5
2007-11-22 CVE-2007-6097 Multiple vulnerability in Ingate Firewall And SIParator
Unspecified vulnerability in the ICMP implementation in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 has unknown impact and remote attack vectors, related to ICMP packets that are "incorrectly accepted."
network
low complexity
ingate
critical
10.0
2007-11-22 CVE-2007-6096 Credentials Management vulnerability in Ingate Firewall and Ingate Siparator
Ingate Firewall before 4.6.0 and SIParator before 4.6.0 use cleartext storage for passwords of "administrators with less privileges," which might allow attackers to read these passwords via unknown vectors.
network
low complexity
ingate CWE-255
5.0
2007-11-22 CVE-2007-6095 Information Exposure vulnerability in Ingate Firewall and Ingate Siparator
The SIP component in Ingate Firewall before 4.6.0 and SIParator before 4.6.0, when Remote NAT Traversal is employed, does not properly perform user registration and message distribution, which might allow remote authenticated users to receive messages intended for other users.
network
low complexity
ingate CWE-200
4.0
2007-11-22 CVE-2007-6094 Improper Input Validation vulnerability in Ingate Firewall and Ingate Siparator
The IPsec module in the VPN component in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 allows remote attackers to cause a denial of service (module crash) via an IPsec Phase 2 proposal that lacks Perfect Forward Secrecy (PFS).
network
ingate CWE-20
4.3
2007-11-22 CVE-2007-6093 Improper Input Validation vulnerability in Ingate Firewall and Ingate Siparator
The SRTP implementation in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 allows remote attackers to cause a denial of service (kernel crash) via an RTCP index that is "much more than expected."
network
ingate CWE-20
7.1
2007-11-22 CVE-2007-6092 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ingate Firewall and Ingate Siparator
Buffer overflow in libsrtp in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 has unknown impact and attack vectors.
network
low complexity
ingate CWE-119
critical
10.0
2007-06-11 CVE-2007-3177 Improper Authentication vulnerability in Ingate Firewall and Ingate Siparator
Ingate Firewall and SIParator before 4.5.2 allow remote attackers to bypass SIP authentication via a certain maddr parameter.
network
low complexity
ingate CWE-287
5.0