SmcGui.exe in Sygate Protection Agent 5.0 build 6144 allows local users to obtain management control over the agent by executing the GUI (SmcGui.exe) and then killing the process, which causes the privileged management GUI to launch.
Max CVSS
4.6
EPSS Score
0.04%
Published
2005-12-28
Updated
2018-10-19
Sygate Security Agent (SSA) in Sygate Secure Enterprise 3.5 through 4.1 does not prevent the security policy from being updated by unprivileged users, which allows local users to modify the policy by exporting the policy file, changing it, and importing it back into SSA.
Max CVSS
4.6
EPSS Score
0.04%
Published
2005-04-12
Updated
2016-10-18
Sygate Enforcer 3.5MR1 and earlier passes broadcast traffic before authentication, which could allow remote attackers to bypass filtering rules.
Max CVSS
7.5
EPSS Score
0.63%
Published
2004-09-28
Updated
2017-07-11
Sygate Secure Enterprise (SSE) 3.5MR3 and earlier does not change the key used to encrypt data, which allows remote attackers to cause a denial of service (resource exhaustion) by capturing a session and repeatedly replaying the session.
Max CVSS
5.0
EPSS Score
0.93%
Published
2004-09-28
Updated
2017-07-11
Sygate Enforcer 4.0 earlier allows remote attackers to cause a denial of service (service hang) by replaying a malformed discovery packet to UDP port 39999.
Max CVSS
5.0
EPSS Score
0.93%
Published
2004-09-28
Updated
2017-07-11
5 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!