Search criteria
3 vulnerabilities found for DeleGate by DeleGate.org
JVNDB-2004-000511
Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00Summary
DeleGate Multiple Buffer Overflow Vulnerabilities
Details
DeleGate suffers buffer overflow when scanf(), strncpy() and other string handling process are set to fail with a long string sent by proxy.
References
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2004/JVNDB-2004-000511.html",
"dc:date": "2008-05-21T00:00+09:00",
"dcterms:issued": "2008-05-21T00:00+09:00",
"dcterms:modified": "2008-05-21T00:00+09:00",
"description": "DeleGate suffers buffer overflow when scanf(), strncpy() and other string handling process are set to fail with a long string sent by proxy.",
"link": "https://jvndb.jvn.jp/en/contents/2004/JVNDB-2004-000511.html",
"sec:cpe": {
"#text": "cpe:/a:delegate:delegate",
"@product": "DeleGate",
"@vendor": "DeleGate.org",
"@version": "2.2"
},
"sec:cvss": {
"@score": "7.5",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2004-000511",
"sec:references": [
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0861",
"@id": "CVE-2005-0861",
"@source": "CVE"
},
{
"#text": "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2005-0861",
"@id": "CVE-2005-0861",
"@source": "NVD"
},
{
"#text": "http://secunia.com/advisories/14649",
"@id": "SA14649",
"@source": "SECUNIA"
},
{
"#text": "http://www.securityfocus.com/bid/12867",
"@id": "12867",
"@source": "BID"
},
{
"#text": "http://xforce.iss.net/xforce/xfdb/19775",
"@id": "19775",
"@source": "XF"
}
],
"title": "DeleGate Multiple Buffer Overflow Vulnerabilities"
}
JVNDB-2004-000179
Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00Summary
DeleGate SSLway Filter Buffer Overflow Vulnerability
Details
Delegate SSLway Filter contains a buffer overflow vulnerability which stems from lack of memory space to handle SSL certificates.
References
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2004/JVNDB-2004-000179.html",
"dc:date": "2008-05-21T00:00+09:00",
"dcterms:issued": "2008-05-21T00:00+09:00",
"dcterms:modified": "2008-05-21T00:00+09:00",
"description": "Delegate SSLway Filter contains a buffer overflow vulnerability which stems from lack of memory space to handle SSL certificates.",
"link": "https://jvndb.jvn.jp/en/contents/2004/JVNDB-2004-000179.html",
"sec:cpe": {
"#text": "cpe:/a:delegate:delegate",
"@product": "DeleGate",
"@vendor": "DeleGate.org",
"@version": "2.2"
},
"sec:cvss": {
"@score": "7.5",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2004-000179",
"sec:references": [
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2003",
"@id": "CVE-2004-2003",
"@source": "CVE"
},
{
"#text": "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2004-2003",
"@id": "CVE-2004-2003",
"@source": "NVD"
},
{
"#text": "http://secunia.com/advisories/11569",
"@id": "SA11569",
"@source": "SECUNIA"
},
{
"#text": "http://www.securityfocus.com/bid/10295",
"@id": "10295",
"@source": "BID"
},
{
"#text": "http://xforce.iss.net/xforce/xfdb/16078",
"@id": "16078",
"@source": "XF"
},
{
"#text": "http://www.securiteam.com/securitynews/5UP041PCUC.html",
"@id": "5UP041PCUC",
"@source": "SECTEAM"
},
{
"#text": "http://www.osvdb.org/5945",
"@id": "5945",
"@source": "OSVDB"
}
],
"title": "DeleGate SSLway Filter Buffer Overflow Vulnerability"
}
JVNDB-2005-000343
Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00Summary
DeleGate DNS Message Decompression Denial of Service Vulnerability
Details
DNS implementation in DeleGate does not handle a compressed DNS packet properly, which could cause an infinite loop.
Note that some other DNS packet processing systems have the issues related to this vulnerability. For more information on those systems, please refer to NISCC-589088 (JVN) and NISCC Advisory 589088/NISCC/DNS (CPNI Advisory 00432).
References
| Type | URL | ||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2005/JVNDB-2005-000343.html",
"dc:date": "2008-05-21T00:00+09:00",
"dcterms:issued": "2008-05-21T00:00+09:00",
"dcterms:modified": "2008-05-21T00:00+09:00",
"description": "DNS implementation in DeleGate does not handle a compressed DNS packet properly, which could cause an infinite loop.\r\n\r\nNote that some other DNS packet processing systems have the issues related to this vulnerability. For more information on those systems, please refer to NISCC-589088 (JVN) and NISCC Advisory 589088/NISCC/DNS (CPNI Advisory 00432).",
"link": "https://jvndb.jvn.jp/en/contents/2005/JVNDB-2005-000343.html",
"sec:cpe": {
"#text": "cpe:/a:delegate:delegate",
"@product": "DeleGate",
"@vendor": "DeleGate.org",
"@version": "2.2"
},
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2005-000343",
"sec:references": [
{
"#text": "http://jvn.jp/niscc/NISCC-589088/index.html",
"@id": "NISCC-589088",
"@source": "JVN"
},
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0036",
"@id": "CVE-2005-0036",
"@source": "CVE"
},
{
"#text": "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2005-0036",
"@id": "CVE-2005-0036",
"@source": "NVD"
},
{
"#text": "http://www.cpni.gov.uk/docs/re-20050524-00432.pdf?lang=en",
"@id": "589088/NISCC/DNS",
"@source": "NISCC"
},
{
"#text": "http://www.cpni.gov.uk/Products/vulnerabilitydisclosures/default.aspx?id=va-20050524-00432.xml",
"@id": "00432",
"@source": "CPNI"
},
{
"#text": "http://www.securityfocus.com/bid/13729",
"@id": "13729",
"@source": "BID"
},
{
"#text": "http://www.frsirt.com/english/advisories/2005/0610",
"@id": "FrSIRT/ADV-2005-0610",
"@source": "FRSIRT"
}
],
"title": "DeleGate DNS Message Decompression Denial of Service Vulnerability"
}