Vulnerabilities > Ingate > Ingate Firewall
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-06-11 | CVE-2007-3176 | Remote Security vulnerability in Ingate Siparator Unspecified vulnerability in Ingate Firewall and SIParator before 4.5.2 allows remote authenticated users without full privileges to download a Support Report. | 4.0 |
| 2006-06-09 | CVE-2006-2925 | Cross-Site Scripting vulnerability in Ingate Firewall Cross-site scripting (XSS) vulnerability in the web interface in Ingate Firewall before 4.4.1 and SIParator before 4.4.1 allows remote attackers to inject arbitrary web script or HTML, and steal cookies, via unspecified vectors related to "XSS exploits" in administrator functionality. | 4.0 |
| 2006-06-09 | CVE-2006-2924 | Remote SSL/TLS Handshake Denial Of Service vulnerability in Ingate Firewall and SIParator Ingate Firewall in the SIP module before 4.4.1 and SIParator before 4.4.1, when TLS is enabled or when SSL/TLS is enabled in the web server, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake. | 5.0 |
| 2005-12-22 | CVE-2005-4464 | Remote Kernel Deadlock Denial Of Service vulnerability in Ingate Firewall and SIParator Ingate Firewall before 4.3.4 and SIParator before 4.3.4 allows remote attackers to cause a denial of service (kernel deadlock) by sending a SYN packet for a TCP stream, which requires an RST packet in response. | 7.8 |
| 2005-05-02 | CVE-2005-0311 | Unspecified vulnerability in Ingate Firewall Ingate Firewall 4.1.3 and earlier does not terminate the PPTP session for an active user when the administrator disables that user from a resource, which could allow remote authenticated users to retain unauthorized access to resources. | 4.6 |
| 2003-12-31 | CVE-2003-1112 | Unspecified vulnerability in Ingate Firewall and Ingate Siparator The Session Initiation Protocol (SIP) implementation in Ingate Firewall and Ingate SIParator before 3.1.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. | 7.5 |