31 matches found
EUVD-2001-0512
Malware in sbrugna...
EUVD-2001-0513
Malware in sbrugna...
EUVD-2003-1439
Malware in sbrugna...
EUVD-2001-0514
Malware in sbrugna...
Aladdin Knowledge Systems eSafe Gateway 3.0 HTML tag Script-filtering Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2800/info eSafe Gateway is a security utility used for filtering internet content. It is possible to craft an html file that slips through eSafe Gateway's script filtering feature. eSafe Gateway will ignore scripting...
Aladdin Knowledge Systems eSafe Gateway 3.0 Unicode Script-filtering Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2801/info eSafe Gateway is a security utility used for filtering internet content. An html file may be crafted to bypass the script-filtering feature offered by eSafe Gateway. This is done by simply encoding the SCRIPT ta...
eSafe Gateway 2.1 Script-filtering Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2750/info eSafe Gateway is a security utility used for filtering internet content. An html file may be crafted to bypass the script-filtering feature offered by eSafe Gateway. This is done by simply changing the syntax of...
CVE-2003-1449
Affected product: Aladdin Knowledge Systems eSafe Gateway 3.5.126.0. Issue: CVP data stream incomplete validation allows remote attackers to bypass virus protection. Root cause: CVP data is not checked in full. Impact (per sources): partial confidentiality, integrity, and availability; CVSS v2 ba...
CVE-2003-1449
Aladdin Knowlege Systems eSafe Gateway 3.5.126.0 does not check the entire stream of Content Vectoring Protocol CVP data, which allows remote attackers to bypass virus protection...
CVE-2003-1449
Aladdin Knowlege Systems eSafe Gateway 3.5.126.0 does not check the entire stream of Content Vectoring Protocol CVP data, which allows remote attackers to bypass virus protection...
Vendor Response to - eSafe gateway and Check Point FW-1 protection bypass
Dear Sirs, We would like to comment about a security alert published on your site. An alert regarding Aladdin eSafe Gateway for CVP was published by you: http://www.security.nnov.ru/search/news.asp?binid=2572 The alert was picked up from the original Russian submission without being verified with...
eSafe gateway and Check Point FW-1 protection bypass
Archives packed with lates RA version are not checked...
eSafe gateway fails to catch virii if used in CVP
Subject: eSafe gateway fails to catch virii if used in CVP Affected: eSafe gateway v3.5.126.0 Vendor: Aladdin Knowlege Systems Author: Igor U.Miturin [email protected] Date: February, 5 2003 Risk: Average Vendor Notified: No I. Intro eSafe gateway is a suite of content filtering product...
CVE-2001-0520
Aladdin eSafe Gateway versions 3.0 and earlier allows a remote attacker to circumvent filtering of SCRIPT tags by embedding the scripts within certain HTML tags including 1 onload in the BODY tag, 2 href in the A tag, 3 the BUTTON tag, 4 the INPUT tag, or 5 any other tag in which scripts can be...
CVE-2001-0521
Aladdin eSafe Gateway versions 3.0 and earlier allows a remote attacker to circumvent HTML SCRIPT filtering via the UNICODE encoding of SCRIPT tags within the HTML document...
CVE-2001-0519
Aladdin eSafe Gateway versions 2.x allows a remote attacker to circumvent HTML SCRIPT filtering via a special arrangement of HTML tags which includes SCRIPT tags embedded within other SCRIPT tags...
CVE-2001-0520
CVE-2001-0520 affects Aladdin eSafe Gateway versions 3.0 and earlier. The vulnerability allows a remote attacker to bypass filtering of SCRIPT tags by embedding scripts within certain HTML constructs (e.g., onload in BODY, href in A, BUTTON, INPUT, or other tag-defined scripts). The NVD entry lis...
CVE-2001-0521
CVE-2001-0521 affects Aladdin eSafe Gateway versions 3.0 and earlier. The issue allows a remote attacker to bypass the gateway’s HTML SCRIPT filtering by using Unicode-encoded SCRIPT tags within the HTML document. This describes a filtering bypass in the web gateway; the documents do not provide ...
CVE-2001-0519
Aladdin eSafe Gateway versions 2.x are affected by CVE-2001-0519: a remote attacker can bypass HTML SCRIPT filtering through a crafted HTML sequence that nests SCRIPT tags within other SCRIPT tags. This is the vulnerability described in NVD/NVD-derived records, with a CVSS v2 base score of 7.5 (N...
CVE-2001-0519
Aladdin eSafe Gateway versions 2.x allows a remote attacker to circumvent HTML SCRIPT filtering via a special arrangement of HTML tags which includes SCRIPT tags embedded within other SCRIPT tags...