cbcvebase.

Finjan Software Surfingate vulnerabilities

4 known vulnerabilities affecting finjan_software/surfingate.

Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2004-2107P3HIGHCVSS 7.5PoCv6.0v6.0_1+2 more2004-12-31
CVE-2004-2107 [HIGH] CVE-2004-2107: Finjan SurfinGate 6.0 and 7.0, when running in proxy mode, does not authenticate FHTTP commands on T Finjan SurfinGate 6.0 and 7.0, when running in proxy mode, does not authenticate FHTTP commands on TCP port 3141, which allows remote attackers to use the finjan-parameter-type header to (1) restart the service, (2) use the getlastmsg command to view log information, or (3) use the online command to force a policy update from the database server.
nvd
CVE-2002-1961P4HIGHCVSS 7.5v6.0v6.0.12002-12-31
CVE-2002-1961 [HIGH] CVE-2002-1961: Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions v Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions via a URL whose hostname portion uses a fully qualified domain name (FQDN) that ends in a "." (dot).
nvd
CVE-2002-1962P4HIGHCVSS 7.5v6.0v6.0.12002-12-31
CVE-2002-1962 [HIGH] CVE-2002-1962: Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions v Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions via a URL with an IP address instead of a hostname.
nvd
CVE-2005-1994P4MEDIUMCVSS 5.0v7.0_sp2v7.0_sp32005-06-14
CVE-2005-1994 [MEDIUM] CVE-2005-1994: Finjan SurfinGate 7.0SP2 and SP3 allows remote attackers to download blocked files via hex-encoded c Finjan SurfinGate 7.0SP2 and SP3 allows remote attackers to download blocked files via hex-encoded characters in a filename, as demonstrated using "%2e".
nvd
Finjan Software Surfingate vulnerabilities | cvebase