astaro 漏洞與 CVE 列表(12)

產品(CPE): — CVE 數: 12

astaro 漏洞概覽

彙總 astaro 相關全部產品的 CVE 與安全漏洞情報,包括 CVSS、EPSS、公開時間與漏洞情報資料。

已披露問題常與 跨站腳本、路徑處理缺陷、緩衝區溢位與拒絕服務 相關,可能在 自動化解壓、歸檔處理與檔案處理 場景中帶來 工作階段劫持 等暴露風險。

相關漏洞資料主要來源於公開漏洞披露與安全公告,可用於評估歷史漏洞暴露面與修補優先順序。

漏洞分布趨勢(近 24 個月)

顯示 11212 CVE 數
«« 第一頁 « 上一頁 第 1 / 1 頁 下一頁 »
CVE 摘要 來源 最高 CVSS EPSS % 公開時間 更新時間
CVE-2012-3238 Cross-site scripting (XSS) vulnerability in the Backup/Restore component in WebAdmin in Astaro Security Gateway before 8.305 allows remote attackers to inject arbitrary web script or HTML via the "Comment (optional)" field. [email protected] 4.3 3.48% 2012-07-09 2026-06-16
CVE-2007-4243 Unspecified vulnerability in pfilter-reporter.pl in Astaro Security Gateway (ASG) 7 allows remote attackers to cause a denial of service (CPU consumption) via certain network traffic, as demonstrated by P2P and iTunes applications that download large amounts of data. [email protected] 7.8 2.56% 2007-08-08 2026-06-16
CVE-2007-4242 The pop3 Proxy in Astaro Security Gateway (ASG) 7 does not perform virus scanning of attachments that exceed the maximum attachment size, and passes these attachments, which allows remote attackers to bypass this scanning via a large attachment. [email protected] 5.0 1.54% 2007-08-08 2026-06-16
CVE-2007-3253 Multiple unspecified vulnerabilities in Astaro Security Gateway (ASG) before 7.005 allow remote attackers to cause a denial of service via (1) certain email, which stops the SMTP Proxy during scanning; (2) certain HTTP traffic, which stops or slows down the HTTP proxy during HTTP responses containing virus scanned web pages; and (3) a disconnection during a streaming session. [email protected] 7.8 2.94% 2007-06-18 2026-06-16
CVE-2005-3985 The Internet Key Exchange version 1 (IKEv1) implementation in Astaro Security Linux before 6.102 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. [email protected] 7.8 4.25% 2005-12-04 2026-06-16
CVE-2005-3100 Unspecified "PPTP Remote DoS Vulnerability" in Astaro Security Linux 4.027 allows attackers to cause a denial of service. [email protected] 5.0 1.84% 2005-09-28 2026-06-16
CVE-2005-2731 Directory traversal vulnerability in Astaro Security Linux 6.0, when using Webmin, allows remote authenticated webmin users to read arbitrary files via a .. (dot dot) in the wfe_download parameter to index.fpl. [email protected] 2.1 0.81% 2005-08-30 2026-06-16
CVE-2005-2730 The HTTP proxy in Astaro Security Linux 6.0 allows remote attackers to obtain sensitive information via an invalid request, which reveals a Proxy-authorization string in an error message. [email protected] 5.0 1.68% 2005-08-30 2026-06-16
CVE-2005-2729 The HTTP proxy in Astaro Security Linux 6.0 does not properly filter HTTP CONNECT requests to localhost, which allows remote attackers to bypass firewall rules and connect to local services. [email protected] 7.5 6.56% 2005-08-30 2026-06-16
CVE-2004-2251 The PPTP server in Astaro Security Linux before 4.024 provides information about its version, which makes it easier for remote attackers to construct specialized attacks. [email protected] 5.0 2.10% 2004-12-31 2026-06-16
CVE-2002-1737 Astaro Security Linux 2.016 creates world-writable files and directories, which allows local users to overwrite arbitrary files. [email protected] 2.1 0.38% 2002-12-31 2026-06-16
CVE-2002-0029 Buffer overflows in the DNS stub resolver library in ISC BIND 4.9.2 through 4.9.10, and other derived libraries such as BSD libc and GNU glibc, allow remote attackers to execute arbitrary code via DNS server responses that trigger the overflow in the (1) getnetbyname, or (2) getnetbyaddr functions, aka "LIBRESOLV: buffer overrun" and a different vulnerability than CVE-2002-0684. [email protected] 7.5 9.86% 2002-11-29 2026-06-16
«« 第一頁 « 上一頁 第 1 / 1 頁 下一頁 »
cvelogic Threat Intelligence