Vulnerability CVE-2007-4243


Published: 2007-08-08   Modified: 2012-02-12

Description:
Unspecified vulnerability in pfilter-reporter.pl in Astaro Security Gateway (ASG) 7 allows remote attackers to cause a denial of service (CPU consumption) via certain network traffic, as demonstrated by P2P and iTunes applications that download large amounts of data.

See advisories in our WLB2 database:
Topic
Author
Date
Med.
DOS issue in Astaro Version 7 packet filter reporting
William Warren
09.08.2007

Type:

CWE-Other

Vendor: Astaro
Product: Security gateway 
Version:
7.006
7.005
7.004
7.003
7.002
7.001
7.0

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.8/10
6.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete

 References:
http://astaro.org/showthread.php?p=77667
http://astaro.org/showthread.php?p=77694
http://astaro.org/showthread.php?p=78258
http://astaro.org/showthread.php?t=17782
http://astaro.org/showthread.php?t=17930
http://astaro.org/showthread.php?t=18280
http://astaro.org/showthread.php?t=18307
http://astaro.org/showthread.php?t=18551
http://securityreason.com/securityalert/2981
http://www.hescominsoon.com/archives/773
http://www.securityfocus.com/archive/1/475642/100/0/threaded
http://www.securityfocus.com/archive/1/477120/100/0/threaded
http://www.securitytracker.com/id?1018543
https://exchange.xforce.ibmcloud.com/vulnerabilities/35823

Related CVE
CVE-2012-3238
Cross-site scripting (XSS) vulnerability in the Backup/Restore component in WebAdmin in Astaro Security Gateway before 8.305 allows remote attackers to inject arbitrary web script or HTML via the "Comment (optional)" field.
CVE-2007-4242
The pop3 Proxy in Astaro Security Gateway (ASG) 7 does not perform virus scanning of attachments that exceed the maximum attachment size, and passes these attachments, which allows remote attackers to bypass this scanning via a large attachment.
CVE-2007-3253
Multiple unspecified vulnerabilities in Astaro Security Gateway (ASG) before 7.005 allow remote attackers to cause a denial of service via (1) certain email, which stops the SMTP Proxy during scanning; (2) certain HTTP traffic, which stops or slows d...
CVE-2005-3985
The Internet Key Exchange version 1 (IKEv1) implementation in Astaro Security Linux before 6.102 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Te...
CVE-2005-3100
Unspecified "PPTP Remote DoS Vulnerability" in Astaro Security Linux 4.027 allows attackers to cause a denial of service.
CVE-2005-2729
The HTTP proxy in Astaro Security Linux 6.0 does not properly filter HTTP CONNECT requests to localhost, which allows remote attackers to bypass firewall rules and connect to local services.
CVE-2005-2730
The HTTP proxy in Astaro Security Linux 6.0 allows remote attackers to obtain sensitive information via an invalid request, which reveals a Proxy-authorization string in an error message.
CVE-2005-2731
Directory traversal vulnerability in Astaro Security Linux 6.0, when using Webmin, allows remote authenticated webmin users to read arbitrary files via a .. (dot dot) in the wfe_download parameter to index.fpl.

Copyright 2019, cxsecurity.com

 

Back to Top