CVSS: 7.5EPSS: 14%CPEs: 13EXPL: 3CVE-2004-2003 – DeleGate 7.8.x/8.x - SSLway Filter Remote Stack Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2004-2003
Buffer overflow in the ssl_prcert function in the SSLway filter (sslway.c) for DeleGate 8.9.2 and earlier allows remote attackers to execute arbitrary code via a certificate with a long (1) subject or (2) issuer name field. • https://www.exploit-db.com/exploits/24095 http://marc.info/?l=bugtraq&m=108386181021070&w=2 http://secunia.com/advisories/11569 http://www.osvdb.org/5945 http://www.securityfocus.com/bid/10295 https://exchange.xforce.ibmcloud.com/vulnerabilities/16078 •
CVSS: 7.5EPSS: 3%CPEs: 4EXPL: 0CVE-2002-1781
https://notcve.org/view.php?id=CVE-2002-1781
Multiple buffer overflows in DeleGate 7.7.0 through 7.8.1 allow remote attackers to execute arbitrary code, as demonstrated using a long USER command to the POP proxy. • http://archives.neohapsis.com/archives/bugtraq/2002-02/0051.html http://online.securityfocus.com/archive/1/256117 http://www.globalintersec.com/adv/delegate-2002012101.txt http://www.securityfocus.com/bid/4055 https://exchange.xforce.ibmcloud.com/vulnerabilities/8114 •
CVSS: 7.5EPSS: 3%CPEs: 4EXPL: 1CVE-2001-1202 – DeleGate 7.7.1 - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2001-1202
Cross-site scripting vulnerability in DeleGate 7.7.0 and 7.7.1 does not quote scripting commands within a "403 Forbidden" error page, which allows remote attackers to execute arbitrary Javascript on other clients via a URL that generates an error. Vulnerabildad de secuencias de comandos en sitios cruzados (cross-site scripting) en DeleGate 7.7.0 y 7.7.1 no procesa las secuencias de comandos en una página de error '403 Forbidden', lo que permite a atacantes remotos ejecutar Javascript arbitrario en otros clientes mediante una URL que genera un error. • https://www.exploit-db.com/exploits/21193 http://marc.info/?l=bugtraq&m=100956050432351&w=2 http://www.iss.net/security_center/static/7745.php http://www.securityfocus.com/bid/3749 •
CVSS: 5.0EPSS: 2%CPEs: 1EXPL: 0CVE-1999-1338
https://notcve.org/view.php?id=CVE-1999-1338
Delegate proxy 5.9.3 and earlier creates files and directories in the DGROOT with world-writable permissions. • http://marc.info/?l=bugtraq&m=93259112204664&w=2 •