Lucene search
K

5916 matches found

OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.26 views

Fortinet Fortigate console management detection

The remote host appears to be a Fortinet Fortigate Firewall. Connections are allowed to the web console management. Letting attackers know that you are using this software will help them to focus their attack or will make them change their strategy. In addition to this, an attacker may set up a...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.38 views

Fortinet Fortigate console management detection

This VT has been deprecated and replaced by the VT SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3AI score
Exploits0
NVD
NVD
added 2005/11/01 12:47 p.m.14 views

CVE-2005-3400

Multiple interpretation error in Fortinet 2.48.0.0 allows remote attackers to bypass virus scanning via a file such as BAT, HTML, and EML with an "MZ" magic byte sequence which is normally associated with EXE, which causes the file to be treated as a safe type that could still be executed as a...

5CVSS6.5AI score0.01435EPSS
Exploits0References2
Cvelist
Cvelist
added 2005/11/01 11:0 a.m.23 views

CVE-2005-3400

Multiple interpretation error in Fortinet 2.48.0.0 allows remote attackers to bypass virus scanning via a file such as BAT, HTML, and EML with an "MZ" magic byte sequence which is normally associated with EXE, which causes the file to be treated as a safe type that could still be executed as a...

6.5AI score0.01435EPSS
Exploits0References2
CVE
CVE
added 2005/11/01 11:0 a.m.64 views

CVE-2005-3400

The CVE-2005-3400 entry describes a vulnerability in Fortinet 2.48.0.0 identified as a multiple interpretation error. The issue allows remote attackers to bypass virus scanning by submitting a file type such as BAT, HTML, or EML that contains an MZ (EXE) magic byte sequence, causing the file to b...

5CVSS6.9AI score0.01435EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2005/10/14 4:0 a.m.57 views

CVE-2005-3221

CVE-2005-3221 : Multiple interpretation errors in unspecified versions of Fortinet Antivirus allow remote attackers to bypass virus detection by presenting a malicious executable embedded in a specially crafted RAR file with malformed central and local headers. The crafted archive can be opened b...

5.1CVSS7AI score0.01723EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2005/10/14 4:0 a.m.25 views

CVE-2005-3221

Multiple interpretation error in unspecified versions of Fortinet Antivirus allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip, eve...

6.5AI score0.01723EPSS
Exploits0References2
securityvulns
securityvulns
added 2005/06/03 12:0 a.m.33 views

Fortinet Fortigate firewall backdoor account

maintainer/pbcpbnserial number account has local root access to device...

3.7AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2005/06/03 12:0 a.m.31 views

Backdoor in Fortinet's firewall Fortigate

If you have console access to this box, you are able to get root access or more by using the Username: maintainer Password: pbcpbnhere should you type the serialnr. of the box, the characters should be in Capital letters. FortiOS: 2.x Regards Johan Andersson Atea Security, Sweden Phone: +46-709-1...

4.2AI score
Exploits0
Cvelist
Cvelist
added 2005/06/02 4:0 a.m.18 views

CVE-2005-1837

Fortinet firewall running FortiOS 2.x contains a hardcoded username with the password set to the serial number, which allows local users with console access to gain privileges...

6.7AI score0.0106EPSS
Exploits0References1
CVE
CVE
added 2005/06/02 4:0 a.m.44 views

CVE-2005-1837

Affected product: Fortinet FortiOS 2.x Fortinet firewall. Vulnerability: Hardcoded username with the password set to the device serial number, enabling local users with console access to gain privileges. Impact: Privilege escalation to higher privileges for local attackers. Root cause: Credential...

7.5CVSS7.1AI score0.0106EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2005/06/01 4:0 a.m.12 views

CVE-2005-1837

Fortinet firewall running FortiOS 2.x contains a hardcoded username with the password set to the serial number, which allows local users with console access to gain privileges...

7.5CVSS6.7AI score0.0106EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2005/05/16 12:0 a.m.26 views

Fortinet VPN Server Detection (over PPTP)

Binary data 2916.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/03/18 12:0 a.m.420 views

Fortinet FortiGate Web Console Management Detection

A Fortinet FortiGate Firewall is running on the remote host, and connections are allowed to its web-based console management port. Letting attackers know that you are using this software will help them to focus their attack or will make them change their strategy. In addition to this, an attacker...

5.6AI score
Exploits0References1
Packet Storm
Packet Storm
added 2005/02/06 12:0 a.m.44 views

foxmailDoS.txt

DATE: 02/04/2005 AUTHOR: Fortinet, inc xouyang PRODUCTS: Foxmail Server- A MAil server for both Windows and linux. AFFECTED VERSION: Foxmail server for windows version 2.0Newest.I just test windows server ,maybe linux version have vulnerability too. Description: Foxmail-the Email client applicati...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2003/10/03 12:0 a.m.22 views

[Full-Disclosure] exploiting fortigate firewall through webinterface

Issue: Several vulnerabilities in web interface of Fortigate firewall of which the most serious one will allow a remote attacker to obtain a username and password of the Fortigate. Release: pre 2.50 maintenance release 4 Fixed in: Fortinet OS 2.50 MR4, available from FTP as of 29 Sept. 2003 Date:...

0.7AI score
Exploits0
Rows per page
Query Builder