CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2008-5540
https://notcve.org/view.php?id=CVE-2008-5540
12 Dec 2008 — Secure Computing Secure Web Gateway (aka Webwasher), when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt extension, or (3) a .jpg extension, as demonstrated by a document containing a CVE-2006-5745 exploit. Secure Computing Secure Web Gateway (alias Webwasher), cuando se utiliza Internet Explorer 6 o 7, permite a atacantes re... • http://securityreason.com/securityalert/4723 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2008-1797
https://notcve.org/view.php?id=CVE-2008-1797
15 Apr 2008 — Unspecified vulnerability in Secure Computing Webwasher 5.30 before build 3159 and 6.3.0 before build 3150 allows remote attackers to cause a denial of service (freeze) via a crafted URL. Vulnerabilidad no especificada en Secure Computing Webwasher 5.30 versiones anteriores a Build 3159 y 6.3.0 versiones anteriores a Build 3150 permite a atacantes remotos provocar una denegación de servicio (congelación) a través de una URL manipulada. • http://secunia.com/advisories/29674 •