27 matches found
The vulnerability of the Tunnel Mode mode in the implementation of SSL VPN technology for FortiOS operating systems allows a perpetrator to cause a service failure.
The vulnerability of the Tunnel Mode mode in the FortiOS operating system-based SSL VPN technology stems from the fact that data operations go beyond the buffer in memory when processing LCP packets. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
Fortinet FortiOS < 5.6.13 / 6.0 < 6.0.11 / 6.1 < 6.2.5 / 6.3 < 6.4.2 Heap Buffer overflow (FG-IR-20-082)
The remote host is running a version of FortiOS prior to 5.6.13, 6.0 prior to 6.0.11, 6.1 prior to 6.2.5, or 6.3 prior to 6.4.2. It is, therefore, affected by a buffer overflow in the Link Control Protocol that could allow an authenticated remote attacker to crash the SSL VPN daemon and could be...
FortiOS LCP Message Denial of Service Vulnerability
Fortinet FortiOS is a dedicated security operating system on the FortiGate network security platform. A denial-of-service vulnerability exists in Fortinet FortiOS handling of LCP messages, which can be exploited by a remote attacker to submit a special oversized LCP message request that can crash...
PT-2020-6793 · Fortinet · Fortigate +1
Name of the Vulnerable Software and Affected Versions: FortiGate versions 5.6.12, 6.0.10, 6.2.4 and 6.4.1 and earlier Description: A heap-based buffer overflow vulnerability in the processing of Link Control Protocol messages may allow a remote attacker with valid SSL VPN credentials to crash the...
CVE-2006-4304
Buffer overflow in the sppp driver in FreeBSD 4.11 through 6.1, NetBSD 2.0 through 4.0 beta before 20060823, and OpenBSD 3.8 and 3.9 before 20060902 allows remote attackers to cause a denial of service panic, obtain sensitive information, and possibly execute arbitrary code via crafted Link Contr...
CVE-2006-4304
Buffer overflow in the sppp driver in FreeBSD 4.11 through 6.1, NetBSD 2.0 through 4.0 beta before 20060823, and OpenBSD 3.8 and 3.9 before 20060902 allows remote attackers to cause a denial of service panic, obtain sensitive information, and possibly execute arbitrary code via crafted Link Contr...
CVE-2006-4304
Buffer overflow in the sppp driver in FreeBSD 4.11 through 6.1, NetBSD 2.0 through 4.0 beta before 20060823, and OpenBSD 3.8 and 3.9 before 20060902 allows remote attackers to cause a denial of service panic, obtain sensitive information, and possibly execute arbitrary code via crafted Link Contr...