RSS   Vulnerabilities for 'Clavister coreplus'   RSS

2007-07-16
 
CVE-2007-3805

 

 
The IKE implementation in Clavister CorePlus before 8.80.03, and 8.80.00, does not properly validate certificates during IKE negotiation, which allows remote attackers to cause a denial of service (gateway stop) via certain certificates.

 
 
CVE-2007-3804

CWE-264
 

 
The AntiVirus engine in the HTTP-ALG in Clavister CorePlus before 8.81.00 and 8.80.03 might allow remote attackers to bypass scanning via small files.

 
 
CVE-2007-3803

 

 
The SMTP ALG in Clavister CorePlus before 8.80.04, and 8.81.00, does not properly parse SMTP commands in certain circumstances, which allows remote attackers to bypass address blacklists.

 

 >>> Vendor: Clavister 3 Products
Clavister firewall
Clavister security gateway
Clavister coreplus


Copyright 2024, cxsecurity.com

 

Back to Top