MidnightBSD

Advisories for network_associates

CVE-1999-0683 MEDIUM

Denial of service in Gauntlet Firewall via a malformed ICMP packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates gauntlet_firewall 5.0
CVE-1999-1195 MEDIUM

NAI VirusScan NT 4.0.2 does not properly modify the scan.dat virus definition file during an update via FTP, but it reports that the update was successful, which could cause a system administrator to believe that the definitions have been updated correctly.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates virusscan 4.0.2
CVE-2000-0437 HIGH

Buffer overflow in the CyberPatrol daemon "cyberdaemon" used in gauntlet and WebShield allows remote attackers to cause a denial of service or execute arbitrary commands.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates gauntlet_firewall 5.0
network_associates webshield_e-ppliance 300.0
network_associates gauntlet_firewall 4.1
network_associates webshield 4.0
network_associates webshield_e-ppliance 100.0
network_associates gauntlet_firewall 5.5
network_associates gauntlet_firewall 4.2
CVE-2000-0447 HIGH

Buffer overflow in WebShield SMTP 4.5.44 allows remote attackers to execute arbitrary commands via a long configuration parameter to the WebShield remote management service.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates webshield 4.5.44
CVE-2000-0448 MEDIUM

The WebShield SMTP Management Tool version 4.5.44 does not properly restrict access to the management port when an IP address does not resolve to a hostname, which allows remote attackers to access the configuration via the GET_CONFIG command.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates webshield 4.5.44
CVE-2000-0528 MEDIUM

Net Tools PKI Server does not properly restrict access to remote attackers when the XUDA template files do not contain absolute pathnames for other files.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates net_tools_pki_server 1.0
CVE-2000-0529 MEDIUM

Net Tools PKI Server allows remote attackers to cause a denial of service via a long HTTP request.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates net_tools_pki_server 1.0
CVE-2000-0650 LOW

The default installation of VirusScan 4.5 and NetShield 4.5 has insecure permissions for the registry key that identifies the AutoUpgrade directory, which allows local users to execute arbitrary commands by replacing SETUP.EXE in that directory with a Trojan Horse.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates netshield 4.5
network_associates virusscan 4.5
CVE-2000-0738 MEDIUM

WebShield SMTP 4.5 allows remote attackers to cause a denial of service by sending e-mail with a From: address that has a . (period) at the end, which causes WebShield to continuously send itself copies of the e-mail.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates webshield_smtp 4.5
CVE-2000-0739 MEDIUM

Directory traversal vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to read arbitrary files via a .. (dot dot) attack in an HTTPS request to the enrollment server.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates net_tools_pki_server 1.0hotfix2
network_associates net_tools_pki_server 1.0
network_associates net_tools_pki_server 1.0hotfix1
CVE-2000-0740 MEDIUM

Buffer overflow in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to execute arbitrary commands via a long URL in the HTTPS port.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates net_tools_pki_server 1.0hotfix2
network_associates net_tools_pki_server 1.0
network_associates net_tools_pki_server 1.0hotfix1
CVE-2000-0741 HIGH

Format string vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to execute arbitrary code via format strings in a URL with a .XUDA extension.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates net_tools_pki_server 1.0hotfix2
network_associates net_tools_pki_server 1.0
network_associates net_tools_pki_server 1.0hotfix1
CVE-2000-1129 MEDIUM

McAfee WebShield SMTP 4.5 allows remote attackers to cause a denial of service via a malformed recipient field.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates webshield_smtp 4.5
CVE-2000-1130 HIGH

McAfee WebShield SMTP 4.5 allows remote attackers to bypass email content filtering rules by including Extended ASCII characters in name of the attachment.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates webshield_smtp 4.5
CVE-2000-1157 HIGH

Buffer overflow in NAI Sniffer Agent allows remote attackers to execute arbitrary commands via a long SNMP community name.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates sniffer_agent 3.0.10
CVE-2000-1158 HIGH

NAI Sniffer Agent uses base64 encoding for authentication, which allows attackers to sniff the network and easily decrypt usernames and passwords.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates sniffer_agent 3.0.10
CVE-2000-1159 HIGH

NAI Sniffer Agent allows remote attackers to gain privileges on the agent by sniffing the initial UDP authentication packets and spoofing commands.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates sniffer_agent 3.0.10
CVE-2000-1160 MEDIUM

NAI Sniffer Agent allows remote attackers to cause a denial of service (crash) by sending a large number of login requests.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates sniffer_agent 3.0.10
CVE-2001-1456 HIGH

Buffer overflow in the (1) smap/smapd and (2) CSMAP daemons for Gauntlet Firewall 5.0 through 6.0 allows remote attackers to execute arbitrary code via a crafted mail message.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
sgi irix 6.2
network_associates gauntlet_firewall unix_5.0
pgp e-ppliance_300 1.5
sgi irix 6.4
sgi irix 6.5
mcafee webshield_smtp 4.0
pgp e-ppliance_300 1.0
mcafee webshield_smtp 4.1
pgp e-ppliance_300 2.0
network_associates gauntlet_firewall 4.2
network_associates mcafee_e-ppliance 100_series
network_associates mcafee_e-ppliance 120_series
sgi irix 6.3
network_associates gauntlet_firewall unix_5.5
network_associates gauntlet_firewall unix_6.0
CVE-2001-1542 HIGH

NAI WebShield SMTP 4.5 and possibly 4.5 MR1a does not filter improperly MIME encoded email attachments, which could allow remote attackers to bypass filtering and possibly execute arbitrary code in email clients that process the invalid attachments.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates webshield_smtp 4.5_mr1a
network_associates webshield_smtp 4.5
CVE-2002-1121 HIGH

SMTP content filter engines, including (1) GFI MailSecurity for Exchange/SMTP before 7.2, (2) InterScan VirusWall before 3.52 build 1494, (3) the default configuration of MIMEDefang before 2.21, and possibly other products, do not detect fragmented emails as defined in RFC2046 ("Message Fragmentation and Reassembly") and supported in such products as Outlook Express, which allows remote attackers to bypass content filtering, including virus checking, via fragmented emails of the message/partial content type.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates webshield_smtp 4.5.74.0
roaring_penguin canit 1.2
roaring_penguin mimedefang 2.20
gfi mailsecurity 7.2
trend_micro interscan_viruswall 3.5
network_associates webshield_smtp 4.5
trend_micro interscan_viruswall 3.51
network_associates webshield_smtp 4.5.44
roaring_penguin mimedefang 2.14
network_associates webshield_smtp 4.0.5
trend_micro interscan_viruswall 3.52
CVE-2002-2224 MEDIUM

Buffer overflow in PGPFreeware 7.03 running on Windows NT 4.0 SP6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly including (1) a large Security Parameter Index (SPI) field, (2) large number of payloads, or (3) a long payload.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates pgp_freeware 7.03
CVE-2005-2554 LOW

The web server for Network Associates ePolicy Orchestrator Agent 3.5.0 (patch 3) uses insecure permissions for the "Common Framework\Db" folder, which allows local users to read arbitrary files by creating a subfolder in the EPO agent web root directory.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
network_associates epolicy_orchestrator_agent 3.5.0_(patch_3)