Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Denial of Service Vulnerability in Web Interface of F-Secure Internet Gatekeeper
Vulnerability Description
A denial-of-service (DoS) vulnerability was discovered in the web user interface of F-Secure Internet Gatekeeper. The vulnerability occurs because of an attacker can trigger assertion via malformed HTTP packet to web interface. An unauthenticated attacker could exploit this vulnerability by sending a large username parameter. A successful exploitation could lead to a denial-of-service of the product.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Vulnerability Type
N/A
Vulnerability Title
F-Secure Internet Gatekeeper 输入验证错误漏洞
Vulnerability Description
F-Secure Internet Gatekeeper是芬兰F-Secure公司的一款高效且易管理的企业网络网关级的安全防护解决方案。 F-Secure Internet Gatekeeper存在安全漏洞,该漏洞源于软件用户界面对于错误的HTTP报文处理存在问题。攻击者可以通过错误的HTTP报文向web界面触发断言。未经身份验证的攻击者可以通过发送较大的用户名参数来利用这个漏洞。成功利用此漏洞可能会导致对产品的拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A