Vendor

Nufw

Products

CVEs

Across products

Status

Private

Products

CVE	CVSS	EPSS	Published	Description
CVE-2007-5723	—	0.01	Oct 30, 2007	Heap-based buffer overflow in the samp_send function in nuauth/sasl.c in NuFW before 2.2.7 allows remote attackers to cause a denial of service via unspecified input on which base64 encoding is performed. NOTE: some of these details are obtained from third party information.
CVE-2007-4461	—	0.00	Aug 21, 2007	NuFW 2.2.3, and certain other versions after 2.0, allows remote attackers to bypass time-based packet filtering rules via certain "out of period" choices of packet transmission time.
CVE-2006-0956	—	0.00	Mar 2, 2006	nuauth in NuFW before 1.0.21 does not properly handle blocking TLS sockets, which allows remote authenticated users to cause a denial of service (service hang) by flooding packets at the authentication server.
CVE-2005-3950	—	0.01	Dec 1, 2005	nuauth in NuFW 1.0.x before 1.0.16 and 1.1 allows authenticated users to cause a denial of service via malformed packets.

CVE-2007-5723Oct 30, 2007
risk 0.00cvss —epss 0.01
Heap-based buffer overflow in the samp_send function in nuauth/sasl.c in NuFW before 2.2.7 allows remote attackers to cause a denial of service via unspecified input on which base64 encoding is performed. NOTE: some of these details are obtained from third party information.
CVE-2007-4461Aug 21, 2007
risk 0.00cvss —epss 0.00
NuFW 2.2.3, and certain other versions after 2.0, allows remote attackers to bypass time-based packet filtering rules via certain "out of period" choices of packet transmission time.
CVE-2006-0956Mar 2, 2006
risk 0.00cvss —epss 0.00
nuauth in NuFW before 1.0.21 does not properly handle blocking TLS sockets, which allows remote authenticated users to cause a denial of service (service hang) by flooding packets at the authentication server.
CVE-2005-3950Dec 1, 2005
risk 0.00cvss —epss 0.01
nuauth in NuFW 1.0.x before 1.0.16 and 1.1 allows authenticated users to cause a denial of service via malformed packets.