InterScan
Products
1- 5 CVEs
Recent CVEs
5| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2002-1121 | 0.01 | — | 0.07 | Sep 24, 2002 | SMTP content filter engines, including (1) GFI MailSecurity for Exchange/SMTP before 7.2, (2) InterScan VirusWall before 3.52 build 1494, (3) the default configuration of MIMEDefang before 2.21, and possibly other products, do not detect fragmented emails as defined in RFC2046… | |||
| CVE-2002-2395 | 0.00 | — | 0.03 | Dec 31, 2002 | InterScan VirusWall 3.52 for Windows allows remote attackers to bypass virus protection and possibly execute arbitrary code via HTTP 1.1 gzip content encoding. | |||
| CVE-2001-0132 | 0.00 | — | 0.00 | Mar 12, 2001 | Interscan VirusWall 3.6.x and earlier follows symbolic links when uninstalling the product, which allows local users to overwrite arbitrary files via a symlink attack. | |||
| CVE-2001-0133 | 0.00 | — | 0.02 | Mar 12, 2001 | The web administration interface for Interscan VirusWall 3.6.x and earlier does not use encryption, which could allow remote attackers to obtain the administrator password to sniff the administrator password via the setpasswd.cgi program or other HTTP GET requests that contain… | |||
| CVE-2000-0033 | 0.00 | — | 0.01 | Dec 27, 1999 | InterScan VirusWall SMTP scanner does not properly scan messages with malformed attachments. |
- CVE-2002-1121Sep 24, 2002risk 0.01cvss —epss 0.07
SMTP content filter engines, including (1) GFI MailSecurity for Exchange/SMTP before 7.2, (2) InterScan VirusWall before 3.52 build 1494, (3) the default configuration of MIMEDefang before 2.21, and possibly other products, do not detect fragmented emails as defined in RFC2046…
- CVE-2002-2395Dec 31, 2002risk 0.00cvss —epss 0.03
InterScan VirusWall 3.52 for Windows allows remote attackers to bypass virus protection and possibly execute arbitrary code via HTTP 1.1 gzip content encoding.
- CVE-2001-0132Mar 12, 2001risk 0.00cvss —epss 0.00
Interscan VirusWall 3.6.x and earlier follows symbolic links when uninstalling the product, which allows local users to overwrite arbitrary files via a symlink attack.
- CVE-2001-0133Mar 12, 2001risk 0.00cvss —epss 0.02
The web administration interface for Interscan VirusWall 3.6.x and earlier does not use encryption, which could allow remote attackers to obtain the administrator password to sniff the administrator password via the setpasswd.cgi program or other HTTP GET requests that contain…
- CVE-2000-0033Dec 27, 1999risk 0.00cvss —epss 0.01
InterScan VirusWall SMTP scanner does not properly scan messages with malformed attachments.