CVSS: 7.8EPSS: 2%CPEs: 3EXPL: 0CVE-2005-3985
https://notcve.org/view.php?id=CVE-2005-3985
The Internet Key Exchange version 1 (IKEv1) implementation in Astaro Security Linux before 6.102 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. • http://secunia.com/advisories/17838 http://www.astaro.org/showflat.php?Cat=&Number=63958&page=0&view=collapsed&sb=5&o=&fpart=1#63958 http://www.securityfocus.com/bid/15666 http://www.vupen.com/english/advisories/2005/2678 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3100
https://notcve.org/view.php?id=CVE-2005-3100
Unspecified "PPTP Remote DoS Vulnerability" in Astaro Security Linux 4.027 allows attackers to cause a denial of service. • http://secunia.com/advisories/16967 http://www.astaro.org/showflat.php?Cat=&Number=62289&Main=62289 http://www.osvdb.org/20971 http://www.securityfocus.com/bid/14950 •
CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0CVE-2005-2731
https://notcve.org/view.php?id=CVE-2005-2731
Directory traversal vulnerability in Astaro Security Linux 6.0, when using Webmin, allows remote authenticated webmin users to read arbitrary files via a .. (dot dot) in the wfe_download parameter to index.fpl. • http://marc.info/?l=bugtraq&m=112501186602731&w=2 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2005-2730
https://notcve.org/view.php?id=CVE-2005-2730
The HTTP proxy in Astaro Security Linux 6.0 allows remote attackers to obtain sensitive information via an invalid request, which reveals a Proxy-authorization string in an error message. • http://marc.info/?l=bugtraq&m=112501186602731&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/22024 •
CVSS: 7.5EPSS: 4%CPEs: 1EXPL: 1CVE-2005-2729 – Astaro Security Linux 6.0 01 - HTTP CONNECT Unauthorized Access
https://notcve.org/view.php?id=CVE-2005-2729
The HTTP proxy in Astaro Security Linux 6.0 does not properly filter HTTP CONNECT requests to localhost, which allows remote attackers to bypass firewall rules and connect to local services. • https://www.exploit-db.com/exploits/26198 http://marc.info/?l=bugtraq&m=112501186602731&w=2 http://secunia.com/advisories/16578 http://www.securityfocus.com/bid/14665 https://exchange.xforce.ibmcloud.com/vulnerabilities/22021 •