MidnightBSD

Advisories for stonesoft

CVE-2004-0079 MEDIUM

The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,CWE-476,

Products Affected

Vendor Product Version
avaya intuity_audix *
cisco css_secure_content_accelerator 1.0
stonesoft stonebeat_fullcluster 2.0
stonesoft stonegate 1.7.2
vmware gsx_server 2.5.1_build_5336
tarantella tarantella_enterprise 3.30
cisco webns 6.10_b4
freebsd freebsd 4.9
securecomputing sidewinder 5.2.0.04
4d webstar 5.3
avaya intuity_audix s3210
avaya vsu 5000_r2.0.1
cisco pix_firewall_software 6.2(3)
avaya converged_communications_server 2.0
novell edirectory 8.7.1
avaya sg208 4.4
4d webstar 4.0
freebsd freebsd 5.2.1
cisco pix_firewall_software 6.3(3.109)
openssl openssl 0.9.6h
cisco ios 12.2(14)sy1
avaya sg5 4.2
cisco threat_response *
symantec clientless_vpn_gateway_4400 5.0
stonesoft stonebeat_fullcluster 3.0
avaya s8300 r2.0.1
vmware gsx_server 2.0
redhat openssl 0.9.6b-3
cisco pix_firewall_software 6.3
avaya vsu 5
avaya sg203 4.31.29
freebsd freebsd 5.1
avaya sg200 4.31.29
stonesoft stonegate 1.5.18
securecomputing sidewinder 5.2.0.03
openssl openssl 0.9.7b
bluecoat cacheos_ca_sa 4.1.12
securecomputing sidewinder 5.2.0.01
cisco pix_firewall_software 6.0(4.101)
avaya intuity_audix s3400
neoteris instant_virtual_extranet 3.0
novell imanager 1.5
cisco ios 12.2sy
cisco pix_firewall_software 6.0(2)
checkpoint vpn-1 next_generation_fp2
stonesoft stonegate 2.0.4
avaya sg203 4.4
avaya vsu 100_r2.0.1
openbsd openbsd 3.4
avaya s8300 r2.0.0
hp apache-based_web_server 2.0.43.04
cisco pix_firewall_software 6.0(1)
avaya sg5 4.3
sco openserver 5.0.7
securecomputing sidewinder 5.2
openssl openssl 0.9.6e
stonesoft stonegate 2.0.1
stonesoft stonegate 2.0.6
stonesoft stonegate 1.7.1
lite speed_technologies_litespeed_web_server 1.3.1
stonesoft stonebeat_webcluster 2.5
avaya s8500 r2.0.0
cisco content_services_switch_11500 *
bluecoat cacheos_ca_sa 4.1.10
redhat linux 7.2
avaya vsu 500
stonesoft stonegate 1.7
stonesoft stonegate_vpn_client 1.7.2
checkpoint provider-1 4.1
cisco ciscoworks_common_services 2.2
cisco webns 7.2_0.0.03
stonesoft stonegate_vpn_client 2.0
openssl openssl 0.9.6c
cisco firewall_services_module 1.1_(3.005)
securecomputing sidewinder 5.2.0.02
avaya s8500 r2.0.1
avaya sg5 4.4
hp apache-based_web_server 2.0.43.00
hp wbem a.02.00.00
cisco application_and_content_networking_software *
cisco ios 12.1(19)e1
redhat linux 7.3
apple mac_os_x 10.3.3
apple mac_os_x_server 10.3.3
hp hp-ux 11.23
dell bsafe_ssl-j 3.0
cisco firewall_services_module 2.1_(0.208)
lite speed_technologies_litespeed_web_server 1.2_rc2
cisco css11000_content_services_switch *
lite speed_technologies_litespeed_web_server 1.0.2
stonesoft stonegate 2.2.4
cisco webns 7.1_0.1.02
cisco pix_firewall_software 6.2(2)
cisco firewall_services_module *
cisco firewall_services_module 1.1.2
cisco pix_firewall_software 6.1
cisco access_registrar *
cisco ios 12.1(11b)e12
openssl openssl 0.9.6i
securecomputing sidewinder 5.2.1
cisco css_secure_content_accelerator 2.0
openssl openssl 0.9.7a
cisco pix_firewall_software 6.2(3.100)
lite speed_technologies_litespeed_web_server 1.1.1
cisco ios 12.1(11b)e14
checkpoint firewall-1 next_generation_fp0
sgi propack 2.4
checkpoint vpn-1 next_generation_fp0
novell edirectory 8.5.12a
lite speed_technologies_litespeed_web_server 1.3_rc1
stonesoft stonebeat_fullcluster 1_3.0
redhat openssl 0.9.7a-2
hp hp-ux 11.00
stonesoft stonebeat_fullcluster 1_2.0
4d webstar 5.2.4
cisco pix_firewall_software 6.1(4)
cisco pix_firewall 6.2.2_.111
cisco webns 7.10_.0.06s
freebsd freebsd 4.8
novell imanager 2.0
4d webstar 5.2
neoteris instant_virtual_extranet 3.3
cisco pix_firewall_software 6.1(5)
cisco webns 7.10
openbsd openbsd 3.3
lite speed_technologies_litespeed_web_server 1.3_rc3
cisco pix_firewall_software 6.2(1)
cisco gss_4480_global_site_selector *
neoteris instant_virtual_extranet 3.3.1
cisco ios 12.1(13)e9
stonesoft stonegate 2.0.7
lite speed_technologies_litespeed_web_server 1.2.2
avaya vsu 2000_r2.0.1
cisco pix_firewall_software 6.0(4)
avaya sg208 *
securecomputing sidewinder 5.2.1.02
novell edirectory 8.6.2
hp hp-ux 8.05
bluecoat proxysg *
hp aaa_server *
4d webstar 5.2.3
stonesoft stonebeat_securitycluster 2.0
sun crypto_accelerator_4000 1.0
cisco pix_firewall_software 6.1(1)
checkpoint firewall-1 *
tarantella tarantella_enterprise 3.20
stonesoft stonegate 2.2
openssl openssl 0.9.6j
lite speed_technologies_litespeed_web_server 1.2_rc1
avaya sg200 4.4
cisco mds_9000 *
dell bsafe_ssl-j 3.0.1
stonesoft stonegate_vpn_client 2.0.8
novell edirectory 8.5.27
checkpoint firewall-1 2.0
openssl openssl 0.9.6f
openssl openssl 0.9.6g
cisco pix_firewall_software 6.1(2)
lite speed_technologies_litespeed_web_server 1.0.3
stonesoft servercluster 2.5
neoteris instant_virtual_extranet 3.1
stonesoft stonegate 2.0.9
vmware gsx_server 2.0.1_build_2129
lite speed_technologies_litespeed_web_server 1.2.1
avaya vsu 7500_r2.0.1
4d webstar 5.3.1
cisco call_manager *
stonesoft stonegate 2.1
redhat enterprise_linux 3.0
stonesoft stonegate 1.5.17
cisco pix_firewall_software 6.3(1)
hp wbem a.02.00.01
checkpoint firewall-1 next_generation_fp2
avaya s8700 r2.0.0
openssl openssl 0.9.7c
cisco webns 7.1_0.2.06
openssl openssl 0.9.6k
novell edirectory 8.7
stonesoft stonegate 1.6.2
avaya s8700 r2.0.1
lite speed_technologies_litespeed_web_server 1.1
cisco webns 6.10
cisco pix_firewall_software 6.3(3.102)
stonesoft stonegate_vpn_client 2.0.9
cisco ios 12.1(11b)e
openssl openssl 0.9.7
cisco secure_content_accelerator 10000
avaya intuity_audix 5.1.46
avaya vsu 10000_r2.0.1
redhat enterprise_linux_desktop 3.0
stonesoft servercluster 2.5.2
stonesoft stonebeat_fullcluster 2.5
tarantella tarantella_enterprise 3.40
hp wbem a.01.05.08
cisco pix_firewall_software 6.1(3)
lite speed_technologies_litespeed_web_server 1.3
cisco firewall_services_module 1.1.3
dell bsafe_ssl-j 3.1
lite speed_technologies_litespeed_web_server 1.0.1
freebsd freebsd 5.2
lite speed_technologies_litespeed_web_server 1.3_rc2
4d webstar 5.2.2
sco openserver 5.0.6
cisco gss_4490_global_site_selector *
openssl openssl 0.9.6d
sgi propack 2.3
vmware gsx_server 2.5.1
cisco ios 12.2(14)sy
checkpoint vpn-1 vsx_ng_with_application_intelligence
redhat linux 8.0
cisco okena_stormwatch 3.2
cisco ios 12.2za
cisco pix_firewall_software 6.0
stonesoft stonegate 1.6.3
stonesoft stonegate 2.2.1
stonesoft stonebeat_webcluster 2.0
novell edirectory 8.5
sgi propack 3.0
4d webstar 5.2.1
avaya vsu 5x
stonesoft stonegate 2.0.5
stonesoft stonegate 2.0.8
stonesoft stonegate_vpn_client 2.0.7
cisco ios 12.1(11)e
redhat openssl 0.9.6-15
cisco pix_firewall_software 6.2
stonesoft stonegate_vpn_client 1.7
vmware gsx_server 3.0_build_7592
cisco pix_firewall_software 6.0(3)
novell edirectory 8.0
cisco pix_firewall_software 6.3(2)
hp hp-ux 11.11
cisco ciscoworks_common_management_foundation 2.1
checkpoint vpn-1 next_generation_fp1
neoteris instant_virtual_extranet 3.2
stonesoft stonebeat_securitycluster 2.5
checkpoint firewall-1 next_generation_fp1
CVE-2004-0081 MEDIUM

OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
avaya intuity_audix *
cisco css_secure_content_accelerator 1.0
stonesoft stonebeat_fullcluster 2.0
stonesoft stonegate 1.7.2
vmware gsx_server 2.5.1_build_5336
tarantella tarantella_enterprise 3.30
cisco webns 6.10_b4
freebsd freebsd 4.9
securecomputing sidewinder 5.2.0.04
4d webstar 5.3
avaya intuity_audix s3210
avaya vsu 5000_r2.0.1
cisco pix_firewall_software 6.2(3)
avaya converged_communications_server 2.0
novell edirectory 8.7.1
avaya sg208 4.4
4d webstar 4.0
freebsd freebsd 5.2.1
cisco pix_firewall_software 6.3(3.109)
openssl openssl 0.9.6h
cisco ios 12.2(14)sy1
avaya sg5 4.2
cisco threat_response *
symantec clientless_vpn_gateway_4400 5.0
stonesoft stonebeat_fullcluster 3.0
avaya s8300 r2.0.1
vmware gsx_server 2.0
redhat openssl 0.9.6b-3
cisco pix_firewall_software 6.3
avaya vsu 5
avaya sg203 4.31.29
freebsd freebsd 5.1
avaya sg200 4.31.29
stonesoft stonegate 1.5.18
securecomputing sidewinder 5.2.0.03
openssl openssl 0.9.7b
bluecoat cacheos_ca_sa 4.1.12
securecomputing sidewinder 5.2.0.01
cisco pix_firewall_software 6.0(4.101)
avaya intuity_audix s3400
neoteris instant_virtual_extranet 3.0
novell imanager 1.5
cisco ios 12.2sy
cisco pix_firewall_software 6.0(2)
stonesoft stonegate 2.0.4
avaya sg203 4.4
avaya vsu 100_r2.0.1
openbsd openbsd 3.4
avaya s8300 r2.0.0
hp apache-based_web_server 2.0.43.04
cisco pix_firewall_software 6.0(1)
avaya sg5 4.3
sco openserver 5.0.7
securecomputing sidewinder 5.2
openssl openssl 0.9.6e
stonesoft stonegate 2.0.1
stonesoft stonegate 2.0.6
stonesoft stonegate 1.7.1
lite speed_technologies_litespeed_web_server 1.3.1
stonesoft stonebeat_webcluster 2.5
avaya s8500 r2.0.0
cisco content_services_switch_11500 *
bluecoat cacheos_ca_sa 4.1.10
redhat linux 7.2
avaya vsu 500
stonesoft stonegate 1.7
stonesoft stonegate_vpn_client 1.7.2
checkpoint provider-1 4.1
cisco ciscoworks_common_services 2.2
cisco webns 7.2_0.0.03
stonesoft stonegate_vpn_client 2.0
openssl openssl 0.9.6c
cisco firewall_services_module 1.1_(3.005)
securecomputing sidewinder 5.2.0.02
avaya s8500 r2.0.1
avaya sg5 4.4
hp apache-based_web_server 2.0.43.00
hp wbem a.02.00.00
cisco application_and_content_networking_software *
cisco ios 12.1(19)e1
redhat linux 7.3
apple mac_os_x 10.3.3
apple mac_os_x_server 10.3.3
hp hp-ux 11.23
dell bsafe_ssl-j 3.0
cisco firewall_services_module 2.1_(0.208)
lite speed_technologies_litespeed_web_server 1.2_rc2
cisco css11000_content_services_switch *
lite speed_technologies_litespeed_web_server 1.0.2
stonesoft stonegate 2.2.4
cisco webns 7.1_0.1.02
cisco pix_firewall_software 6.2(2)
cisco firewall_services_module *
cisco firewall_services_module 1.1.2
cisco pix_firewall_software 6.1
cisco access_registrar *
cisco ios 12.1(11b)e12
openssl openssl 0.9.6i
securecomputing sidewinder 5.2.1
cisco css_secure_content_accelerator 2.0
openssl openssl 0.9.7a
cisco pix_firewall_software 6.2(3.100)
lite speed_technologies_litespeed_web_server 1.1.1
cisco ios 12.1(11b)e14
checkpoint firewall-1 next_generation_fp0
sgi propack 2.4
checkpoint vpn-1 next_generation_fp0
novell edirectory 8.5.12a
lite speed_technologies_litespeed_web_server 1.3_rc1
stonesoft stonebeat_fullcluster 1_3.0
redhat openssl 0.9.7a-2
hp hp-ux 11.00
stonesoft stonebeat_fullcluster 1_2.0
4d webstar 5.2.4
cisco pix_firewall_software 6.1(4)
cisco pix_firewall 6.2.2_.111
cisco webns 7.10_.0.06s
freebsd freebsd 4.8
novell imanager 2.0
4d webstar 5.2
neoteris instant_virtual_extranet 3.3
cisco pix_firewall_software 6.1(5)
cisco webns 7.10
openbsd openbsd 3.3
lite speed_technologies_litespeed_web_server 1.3_rc3
cisco pix_firewall_software 6.2(1)
cisco gss_4480_global_site_selector *
neoteris instant_virtual_extranet 3.3.1
cisco ios 12.1(13)e9
stonesoft stonegate 2.0.7
lite speed_technologies_litespeed_web_server 1.2.2
avaya vsu 2000_r2.0.1
cisco pix_firewall_software 6.0(4)
avaya sg208 *
securecomputing sidewinder 5.2.1.02
novell edirectory 8.6.2
hp hp-ux 8.05
bluecoat proxysg *
hp aaa_server *
4d webstar 5.2.3
stonesoft stonebeat_securitycluster 2.0
sun crypto_accelerator_4000 1.0
cisco pix_firewall_software 6.1(1)
checkpoint firewall-1 *
tarantella tarantella_enterprise 3.20
stonesoft stonegate 2.2
openssl openssl 0.9.6j
lite speed_technologies_litespeed_web_server 1.2_rc1
avaya sg200 4.4
cisco mds_9000 *
dell bsafe_ssl-j 3.0.1
stonesoft stonegate_vpn_client 2.0.8
novell edirectory 8.5.27
checkpoint firewall-1 2.0
openssl openssl 0.9.6f
openssl openssl 0.9.6g
cisco pix_firewall_software 6.1(2)
lite speed_technologies_litespeed_web_server 1.0.3
stonesoft servercluster 2.5
neoteris instant_virtual_extranet 3.1
stonesoft stonegate 2.0.9
vmware gsx_server 2.0.1_build_2129
lite speed_technologies_litespeed_web_server 1.2.1
avaya vsu 7500_r2.0.1
4d webstar 5.3.1
cisco call_manager *
stonesoft stonegate 2.1
checkpoint vpn-1 next_generation
redhat enterprise_linux 3.0
stonesoft stonegate 1.5.17
cisco pix_firewall_software 6.3(1)
hp wbem a.02.00.01
checkpoint firewall-1 next_generation_fp2
avaya s8700 r2.0.0
openssl openssl 0.9.7c
cisco webns 7.1_0.2.06
openssl openssl 0.9.6k
novell edirectory 8.7
stonesoft stonegate 1.6.2
avaya s8700 r2.0.1
lite speed_technologies_litespeed_web_server 1.1
cisco webns 6.10
cisco pix_firewall_software 6.3(3.102)
stonesoft stonegate_vpn_client 2.0.9
cisco ios 12.1(11b)e
openssl openssl 0.9.7
cisco secure_content_accelerator 10000
avaya intuity_audix 5.1.46
avaya vsu 10000_r2.0.1
redhat enterprise_linux_desktop 3.0
stonesoft servercluster 2.5.2
stonesoft stonebeat_fullcluster 2.5
tarantella tarantella_enterprise 3.40
hp wbem a.01.05.08
cisco pix_firewall_software 6.1(3)
lite speed_technologies_litespeed_web_server 1.3
cisco firewall_services_module 1.1.3
dell bsafe_ssl-j 3.1
lite speed_technologies_litespeed_web_server 1.0.1
freebsd freebsd 5.2
lite speed_technologies_litespeed_web_server 1.3_rc2
4d webstar 5.2.2
sco openserver 5.0.6
cisco gss_4490_global_site_selector *
openssl openssl 0.9.6d
sgi propack 2.3
vmware gsx_server 2.5.1
cisco ios 12.2(14)sy
checkpoint vpn-1 vsx_ng_with_application_intelligence
redhat linux 8.0
cisco okena_stormwatch 3.2
cisco ios 12.2za
cisco pix_firewall_software 6.0
stonesoft stonegate 1.6.3
stonesoft stonegate 2.2.1
stonesoft stonebeat_webcluster 2.0
novell edirectory 8.5
sgi propack 3.0
4d webstar 5.2.1
avaya vsu 5x
stonesoft stonegate 2.0.5
stonesoft stonegate 2.0.8
stonesoft stonegate_vpn_client 2.0.7
cisco ios 12.1(11)e
redhat openssl 0.9.6-15
cisco pix_firewall_software 6.2
stonesoft stonegate_vpn_client 1.7
vmware gsx_server 3.0_build_7592
cisco pix_firewall_software 6.0(3)
novell edirectory 8.0
cisco pix_firewall_software 6.3(2)
hp hp-ux 11.11
cisco ciscoworks_common_management_foundation 2.1
checkpoint vpn-1 next_generation_fp1
neoteris instant_virtual_extranet 3.2
stonesoft stonebeat_securitycluster 2.5
checkpoint firewall-1 next_generation_fp1
CVE-2004-0112 MEDIUM

The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
avaya intuity_audix *
cisco css_secure_content_accelerator 1.0
stonesoft stonebeat_fullcluster 2.0
vmware gsx_server 2.5.1_build_5336
forcepoint stonegate 1.5.18
tarantella tarantella_enterprise 3.30
cisco webns 6.10_b4
forcepoint stonegate 1.7.2
freebsd freebsd 4.9
securecomputing sidewinder 5.2.0.04
4d webstar 5.3
avaya intuity_audix s3210
avaya vsu 5000_r2.0.1
cisco pix_firewall_software 6.2(3)
avaya converged_communications_server 2.0
novell edirectory 8.7.1
avaya sg208 4.4
4d webstar 4.0
freebsd freebsd 5.2.1
cisco pix_firewall_software 6.3(3.109)
openssl openssl 0.9.6h
cisco ios 12.2(14)sy1
avaya sg5 4.2
cisco threat_response *
symantec clientless_vpn_gateway_4400 5.0
stonesoft stonebeat_fullcluster 3.0
avaya s8300 r2.0.1
vmware gsx_server 2.0
forcepoint stonegate 1.6.2
redhat openssl 0.9.6b-3
cisco pix_firewall_software 6.3
avaya vsu 5
avaya sg203 4.31.29
freebsd freebsd 5.1
avaya sg200 4.31.29
securecomputing sidewinder 5.2.0.03
openssl openssl 0.9.7b
bluecoat cacheos_ca_sa 4.1.12
securecomputing sidewinder 5.2.0.01
cisco pix_firewall_software 6.0(4.101)
avaya intuity_audix s3400
forcepoint stonegate 2.0.1
neoteris instant_virtual_extranet 3.0
novell imanager 1.5
cisco ios 12.2sy
cisco pix_firewall_software 6.0(2)
checkpoint vpn-1 next_generation_fp2
avaya sg203 4.4
avaya vsu 100_r2.0.1
forcepoint stonegate 1.5.17
openbsd openbsd 3.4
avaya s8300 r2.0.0
hp apache-based_web_server 2.0.43.04
cisco pix_firewall_software 6.0(1)
avaya sg5 4.3
forcepoint stonegate 2.0.5
sco openserver 5.0.7
securecomputing sidewinder 5.2
openssl openssl 0.9.6e
stonesoft stonebeat_webcluster 2.5
avaya s8500 r2.0.0
cisco content_services_switch_11500 *
bluecoat cacheos_ca_sa 4.1.10
redhat linux 7.2
avaya vsu 500
checkpoint provider-1 4.1
cisco ciscoworks_common_services 2.2
cisco webns 7.2_0.0.03
litespeedtech litespeed_web_server 1.0.1
openssl openssl 0.9.6c
cisco firewall_services_module 1.1_(3.005)
securecomputing sidewinder 5.2.0.02
avaya s8500 r2.0.1
avaya sg5 4.4
hp apache-based_web_server 2.0.43.00
hp wbem a.02.00.00
cisco application_and_content_networking_software *
cisco ios 12.1(19)e1
redhat linux 7.3
apple mac_os_x 10.3.3
apple mac_os_x_server 10.3.3
hp hp-ux 11.23
dell bsafe_ssl-j 3.0
cisco firewall_services_module 2.1_(0.208)
cisco css11000_content_services_switch *
cisco webns 7.1_0.1.02
cisco pix_firewall_software 6.2(2)
cisco firewall_services_module *
cisco firewall_services_module 1.1.2
cisco pix_firewall_software 6.1
cisco access_registrar *
cisco ios 12.1(11b)e12
openssl openssl 0.9.6i
securecomputing sidewinder 5.2.1
cisco css_secure_content_accelerator 2.0
openssl openssl 0.9.7a
cisco pix_firewall_software 6.2(3.100)
cisco ios 12.1(11b)e14
checkpoint firewall-1 next_generation_fp0
sgi propack 2.4
checkpoint vpn-1 next_generation_fp0
novell edirectory 8.5.12a
stonesoft stonebeat_fullcluster 1_3.0
redhat openssl 0.9.7a-2
hp hp-ux 11.00
stonesoft stonebeat_fullcluster 1_2.0
4d webstar 5.2.4
cisco pix_firewall_software 6.1(4)
forcepoint stonegate 2.2
cisco pix_firewall 6.2.2_.111
cisco webns 7.10_.0.06s
freebsd freebsd 4.8
novell imanager 2.0
4d webstar 5.2
neoteris instant_virtual_extranet 3.3
cisco pix_firewall_software 6.1(5)
cisco webns 7.10
openbsd openbsd 3.3
cisco pix_firewall_software 6.2(1)
cisco gss_4480_global_site_selector *
neoteris instant_virtual_extranet 3.3.1
cisco ios 12.1(13)e9
forcepoint stonegate 2.0.4
avaya vsu 2000_r2.0.1
cisco pix_firewall_software 6.0(4)
avaya sg208 *
securecomputing sidewinder 5.2.1.02
novell edirectory 8.6.2
hp hp-ux 8.05
bluecoat proxysg *
hp aaa_server *
4d webstar 5.2.3
stonesoft stonebeat_securitycluster 2.0
sun crypto_accelerator_4000 1.0
cisco pix_firewall_software 6.1(1)
forcepoint stonegate 2.0.8
checkpoint firewall-1 *
tarantella tarantella_enterprise 3.20
openssl openssl 0.9.6j
avaya sg200 4.4
cisco mds_9000 *
dell bsafe_ssl-j 3.0.1
novell edirectory 8.5.27
checkpoint firewall-1 2.0
forcepoint stonegate 1.7.1
openssl openssl 0.9.6f
openssl openssl 0.9.6g
cisco pix_firewall_software 6.1(2)
stonesoft servercluster 2.5
neoteris instant_virtual_extranet 3.1
forcepoint stonegate 2.1
vmware gsx_server 2.0.1_build_2129
avaya vsu 7500_r2.0.1
4d webstar 5.3.1
cisco call_manager *
redhat enterprise_linux 3.0
cisco pix_firewall_software 6.3(1)
hp wbem a.02.00.01
checkpoint firewall-1 next_generation_fp2
avaya s8700 r2.0.0
openssl openssl 0.9.7c
cisco webns 7.1_0.2.06
openssl openssl 0.9.6k
novell edirectory 8.7
avaya s8700 r2.0.1
cisco webns 6.10
forcepoint stonegate 2.0.7
cisco pix_firewall_software 6.3(3.102)
cisco ios 12.1(11b)e
forcepoint stonegate 1.6.3
openssl openssl 0.9.7
cisco secure_content_accelerator 10000
avaya intuity_audix 5.1.46
avaya vsu 10000_r2.0.1
redhat enterprise_linux_desktop 3.0
stonesoft servercluster 2.5.2
stonesoft stonebeat_fullcluster 2.5
tarantella tarantella_enterprise 3.40
hp wbem a.01.05.08
cisco pix_firewall_software 6.1(3)
cisco firewall_services_module 1.1.3
dell bsafe_ssl-j 3.1
freebsd freebsd 5.2
4d webstar 5.2.2
sco openserver 5.0.6
cisco gss_4490_global_site_selector *
openssl openssl 0.9.6d
sgi propack 2.3
vmware gsx_server 2.5.1
cisco ios 12.2(14)sy
checkpoint vpn-1 vsx_ng_with_application_intelligence
redhat linux 8.0
cisco okena_stormwatch 3.2
cisco ios 12.2za
cisco pix_firewall_software 6.0
forcepoint stonegate 2.0.9
forcepoint stonegate 2.2.1
stonesoft stonebeat_webcluster 2.0
forcepoint stonegate 2.0.6
novell edirectory 8.5
sgi propack 3.0
4d webstar 5.2.1
avaya vsu 5x
cisco ios 12.1(11)e
redhat openssl 0.9.6-15
cisco pix_firewall_software 6.2
forcepoint stonegate 1.7
vmware gsx_server 3.0_build_7592
cisco pix_firewall_software 6.0(3)
novell edirectory 8.0
cisco pix_firewall_software 6.3(2)
hp hp-ux 11.11
cisco ciscoworks_common_management_foundation 2.1
checkpoint vpn-1 next_generation_fp1
neoteris instant_virtual_extranet 3.2
forcepoint stonegate 2.2.4
stonesoft stonebeat_securitycluster 2.5
checkpoint firewall-1 next_generation_fp1
CVE-2004-0498 MEDIUM

The H.323 protocol agent in StoneSoft firewall engine 2.2.8 and earlier allows remote attackers to cause a denial of service (crash) via crafted H.323 packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
stonesoft firewall_engine *
CVE-2005-3672 MEDIUM

The Internet Key Exchange version 1 (IKEv1) implementation in Stonesoft StoneGate Firewall before 2.6.1 allows remote attackers to cause a denial of service via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the Stonesoft advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
stonesoft stonegate_firewall *
CVE-2009-2631 MEDIUM

Multiple clientless SSL VPN products that run in web browsers, including Stonesoft StoneGate; Cisco ASA; SonicWALL E-Class SSL VPN and SonicWALL SSL VPN; SafeNet SecureWire Access Gateway; Juniper Networks Secure Access; Nortel CallPilot; Citrix Access Gateway; and other products, when running in configurations that do not restrict access to the same domain as the VPN, retrieve the content of remote URLs from one domain and rewrite them so they originate from the VPN's domain, which violates the same origin policy and allows remote attackers to conduct cross-site scripting attacks, read cookies that originated from other domains, access the Web VPN session to gain access to internal resources, perform key logging, and conduct other attacks. NOTE: it could be argued that this is a fundamental design problem in any clientless VPN solution, as opposed to a commonly-introduced error that can be fixed in separate implementations. Therefore a single CVE has been assigned for all products that have this design

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,CWE-264,

Products Affected

Vendor Product Version
sonicwall e-class_ssl_vpn *
aladdin safenet_securewire_access_gateway *
cisco adaptive_security_appliance *
sonicwall ssl_vpn *
stonesoft stonegate *