The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of Firewall-1

2 IDS, IPS: Advanced Evasion Techniques
Twenty three cases of standard techniques of packets variations are not detected by most IDS/IPS...
CVE-2010-0102, SBP-2010-31, SBP-2010-32, SBP-2010-33, SBP-2010-34, SBP-2010-35, VIGILANCE-VUL-10227
2 Firewall-1: buffer overflow of PKI Web Service
An attacker can connect to the PKI Web Service of Firewall-1 in order to generate an overflow...
BID-34286, CVE-2009-1227, VIGILANCE-VUL-8574
3 Firewall-1: file reading
An attacker can connect to the 18264/tcp web server in order to read a file from system...
BID-19136, VIGILANCE-VUL-6035
3 IPSec: vulnerabilities of some ISAKMP protocol implementations
Several implementations of ISAKMP protocol are affected by the same vulnerabilities...
102040, 102246, 10310, 20060501-01-U, 273756, 273756/NISCC/ISAKMP, 6317027, 6348585, 68158, BID-15401, BID-15402, BID-15416, BID-15420, BID-15474, BID-15479, BID-15516, BID-15523, BID-17030, BID-17902, c00602119, CERTA-2005-AVI-458, CERTA-2005-AVI-504, CQ/68020, CSCed94829, CSCei14171, CSCei15053, CSCei19275, CSCei46258, CSCsb15296, CVE-2005-3666, CVE-2005-3667, CVE-2005-3668, CVE-2005-3669, CVE-2005-3670, CVE-2005-3671, CVE-2005-3672, CVE-2005-3673, CVE-2005-3674, CVE-2005-3675, CVE-2005-3732, CVE-2005-3733, CVE-2005-3768, CVE-2006-2298, DSA-965-1, FEDORA-2005-1092, FEDORA-2005-1093, FLSA:190941, FLSA-2006:190941, HPSBTU02100, HPSBUX02076, MDKSA-2006:020, NetBSD-SA2006-003, NISCC/ISAKMP/273756, PR/61076, PR/61779, PSN-2005-11-007, RHSA-2006:026, RHSA-2006:0267-01, SEF8.0-20051114-00, sk31316, SSRT050979, SUSE-SA:2005:070, SYM05-025, VIGILANCE-VUL-5352, VU#226364
2 SecurePlatform NGX: rule bypassing with a CIFS rule
When a rule contains CIFS service, all sessions from clients are allowed...
BID-14781, VIGILANCE-VUL-5184, VU#508209
3 TCP : déni de service à l'aide de paquet Reset
En envoyant des paquets contenant le drapeau Reset et en prédisant certaines informations, un attaquant peut interrompre des sessions TCP actives...
20040403-01-A, 2005.05.02, 236929, 50960, 50961, 58784, 899480, 922819, BID-10183, BSA-2016-005, CERTA-2004-AVI-138, CERTA-2004-AVI-140, CERTA-2004-AVI-143, CERTFR-2014-AVI-308, CERTFR-2017-AVI-034, CERTFR-2017-AVI-044, CERTFR-2017-AVI-054, CERTFR-2017-AVI-131, CISCO20040420a, CISCO20040420b, cisco-sa-20040420-tcp-ios, cisco-sa-20040420-tcp-nonios, CSCed27956, CSCed32349, CVE-2004-0230, FreeBSD-SA-14:19.tcp, HP01077, IY55949, IY55950, IY62006, IY63363, IY63364, IY63365, IY70026, IY70027, IY70028, JSA10638, MS05-019, MS06-064, NetBSD 2004-006, NetBSD-SA2004-006, Netscreen 58784, OpenBSD 34-019, OpenBSD 35-005, PSN-2012-08-686, PSN-2012-08-687, PSN-2012-08-688, PSN-2012-08-689, PSN-2012-08-690, SGI 20040403, SUSE-SU-2017:0333-1, SUSE-SU-2017:0437-1, SUSE-SU-2017:0494-1, SUSE-SU-2017:1102-1, V6-TCPRSTWINDOWDOS, VIGILANCE-VUL-4128, VU#415294
2 OpenSSL : dénis de service
Trois erreurs de OpenSSL permettent à un attaquant de mener un déni de service sur ses applications...
20041101-01-P, 20051101-01-U, 224012, 58466, BID-9899, CERTA-2004-AVI-095, CERTA-2004-AVI-111, CIAC O-101, CISCO20040317a, Compaq SSRT4717, CVE-2004-0079, CVE-2004-0081, CVE-2004-0112, DSA-465, DSA-465-1, FEDORA-2004-095, FEDORA-2005-077, FEDORA-2005-078, FEDORA-2005-079, FEDORA-2005-1042, FLSA-1395, FLSA:1395, FLSA:166939, FLSA-2005:166939, FreeBSD-SA-04:05, HP01011, HP01019, MDKSA-2004:023, NetBSD 2004-005, NetBSD-SA2004-005, Netscreen 58466, O-101, OpenBSD 33-021, OpenBSD 34-016, RHSA-2004:119, RHSA-2004:120, RHSA-2004:121, RHSA-2005:829, RHSA-2005:829-00, RHSA-2005:830, SGI 20041101, SSA:2004-077-01, SSRT4717, SUSE-SA:2004:007, TLSA-2004-09, TLSA-2004-9, V6-UNIXOPENSSL3DOS, VIGILANCE-VUL-4067, VU#288574, VU#465542, VU#484726
2 Antivirus : absence de vérification des données intégrées à un uri
Lorsque les données sont intégrées à un uri, plusieurs antivirus ne les scannent pas...
BID-12269, CVE-2005-0218, MDKSA-2005:025, V6-AVURIDATABYPASS, VIGILANCE-VUL-4636
2 Absence de filtrage de certains contenus
Certains contenus web ne sont pas correctement filtrés par les firewalls...
BID-11558, V6-FWWEBNOFILTRE, VIGILANCE-VUL-4484
1 Détection de la version de Firewall-1
Lorsque le support IPSec est activé, un attaquant distant autorisé à se connecter peut obtenir la version de Firewall-1...
BID-10558, CVE-2004-2679, V6-FW1VPNVENDORIDINFO, VIGILANCE-VUL-4239
Our database contains other pages. You can request a free trial to read them.