VYPR
Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026

CVE-2004-2107

CVE-2004-2107

Description

Finjan SurfinGate 6.0 and 7.0, when running in proxy mode, does not authenticate FHTTP commands on TCP port 3141, which allows remote attackers to use the finjan-parameter-type header to (1) restart the service, (2) use the getlastmsg command to view log information, or (3) use the online command to force a policy update from the database server.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:a:finjan_software:surfingate:6.0:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:finjan_software:surfingate:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:finjan_software:surfingate:6.0_1:*:*:*:*:*:*:*
    • cpe:2.3:a:finjan_software:surfingate:6.0_5:*:*:*:*:*:*:*
    • cpe:2.3:a:finjan_software:surfingate:7.0:*:*:*:*:*:*:*
    • (no CPE)range: 6.0 and 7.0

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.