Vulnerabilities exploited in VPN products used worldwide
SafeNet has issued Security Bulletin 111009-1, "SafeWord 2008 -- SecureWire Access Gateway SSL VPN Vulnerability." This document can be viewed from the SafeNet technical support website. SonicWall Affected. Notified: September 15, 2009 Updated: December 04, 2009 Statement Date: December 01, 2009. Status. Affected Attackers Targeting Vulnerability in Pulse Secure VPN Aug 27, 2019 SSL VPN buffer overrun when parsing javascript href A heap buffer overflow vulnerability in the FortiOS SSL VPN web portal may cause the SSL VPN web service termination for logged in users or potential remote code execution on FortiOS; this happens when an authenticated user visits a specifically crafted proxy-ed webpage, and this is due to a failure to handle javascript href content properly. Overseas APT Organization Exploits Vulnerabilities to Apr 20, 2020
Sep 05, 2019
A heap buffer overflow vulnerability in the FortiOS SSL VPN web portal may cause the SSL VPN web service termination for logged in users or potential remote code execution on FortiOS; this happens when an authenticated user visits a specifically crafted proxy-ed webpage, and this is due to a failure to handle javascript href content properly. Overseas APT Organization Exploits Vulnerabilities to
Pulse Secure VPN Vulnerability Exploited to Deliver
Sonicwall : Security vulnerabilities Absolute path traversal vulnerability in the WebCacheCleaner ActiveX control 1.3.0.3 in SonicWall SSL-VPN 200 before 2.1, and SSL-VPN 2000/4000 before 2.5, allows remote attackers to delete arbitrary files via a full pathname in the argument to the FileDelete method. 42 CVE-2007-5814: 119: Exec Code Overflow 2007-11-05: 2018-10-15 Finding and Fixing Vulnerabilities in SSL Certificate is a Vulnerabilities in SSL Certificate is a Self Signed is a Medium risk vulnerability that is one of the most frequently found on networks around the world. This issue has been around since at least 1990 but has proven either difficult to detect, difficult to resolve or prone to being overlooked entirely. Pulse VPN patched their vulnerability, but businesses are Oct 18, 2019 Cisco Adaptive Security Appliance Software SSL VPN Denial