Qbik: >> Wingate >> 2.1 Security Vulnerabilities
Heap-based buffer overflow in the IMAP service in Qbik WinGate 6.2.2.1137 and earlier allows remote authenticated users to cause a denial of service (resource exhaustion) or possibly execute arbitrary code via a long argument to the LIST command. NOTE: some of these details are obtained from third party information.
CVSS Score
6.5
EPSS Score
0.171
Published
2008-08-12
Directory traversal vulnerability in the logfile service of Wingate 4.1 Beta A and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack via an HTTP GET request that uses encoded characters in the URL.
CVSS Score
5.0
EPSS Score
0.012
Published
2000-12-11