Clavister: >> Clavister Coreplus Security Vulnerabilities
The SMTP ALG in Clavister CorePlus before 8.80.04, and 8.81.00, does not properly parse SMTP commands in certain circumstances, which allows remote attackers to bypass address blacklists.
CVSS Score
10.0
EPSS Score
0.004
Published
2007-07-16
The AntiVirus engine in the HTTP-ALG in Clavister CorePlus before 8.81.00 and 8.80.03 might allow remote attackers to bypass scanning via small files.
CVSS Score
5.0
EPSS Score
0.003
Published
2007-07-16
The IKE implementation in Clavister CorePlus before 8.80.03, and 8.80.00, does not properly validate certificates during IKE negotiation, which allows remote attackers to cause a denial of service (gateway stop) via certain certificates.
CVSS Score
5.4
EPSS Score
0.004
Published
2007-07-16