Veröffentlichte Security Advisories

Alle hier veröffentlichten Schwachstellen wurden vorab vertraulich an den Hersteller gemeldet.

  • 13.03.15 NSOADV-2015-001: Jolla Phone tel URI spoofing
  • 12.08.13 NSOADV-2013-005: SonicWALL Command Injection (upcoming)
  • 17.01.13 NSOADV-2013-002: DELL SonicWALL GMS/Viewpoint/Analyzer Authentication Bypass (/sgms/)
  • 17.01.13 NSOADV-2013-001: DELL SonicWALL GMS/Viewpoint/Analyzer Authentication Bypass (/appliance/)
  • 23.11.12 NSOADV-2012-004: SonicWALL SQL-Injection (upcoming)
  • 23.11.12 NSOADV-2012-003: SonicWALL Authentication Bypass (upcoming)
  • 22.03.11 NSOADV-2011-001: Symantec LiveUpdate Administrator CSRF vulnerability
  • 08.03.11 NSOADV-2011-002: Panda Security Local Privilege Escalation
  • 08.03.11 NSOADV-2011-003: Majordomo2 'help' Command Directory Traversal (PATCH BYPASS)
  • 20.01.11 NSOADV-2010-010: DATEV Multiple Applications DLL Hijacking Vulnerability
  • 19.08.10 NSOADV-2010-005: SonicWALL E-Class SSL-VPN ActiveX Control format string overflow
  • 11.06.10 NSOADV-2010-009: AnNoText Third-Party ActiveX Control overwrite vulnerability
  • 11.06.10 NSOADV-2010-008: AnNoText Third-Party ActiveX Control Buffer Overflow
  • 04.03.10 NSOADV-2010-006: Authentium Command Free Scan ActiveX Control buffer overflow
  • 02.03.10 NSOADV-2010-004: McAfee LinuxShield remote/local code execution
  • 25.02.10 NSOADV-2010-003: DATEV ActiveX Control remote command execution [Video]
  • 19.01.10 NSOADV-2010-002: Google Wave design bugs
  • 09.01.10 NSOADV-2010-001: Panda Security Local Privilege Escalation
  • 02.11.09 NSOADV-2009-001: Symantec ConsoleUtilities ActiveX Control Buffer Overflow
  • 20.10.09 NSOADV-2009-003: Websense Email Security Cross Site Scripting
  • 20.10.09 NSOADV-2009-002: Websense Email Security Web Administrator DoS
  • 02.08.07 Panda Antivirus 2008 Local Privileg Escalation
  • 03.07.07 SonicWALL SSL-VPN Cross Site Scripting Vulnerability
  • 03.07.07 SonicWALL SSL-VPN Information disclosure
  • 28.11.06 b2evolution remote file inclusion Vulnerability
  • 28.11.06 b2evolution Cross Site Scripting Vulnerability