A denial-of-service (DoS) vulnerability was discovered in the web user interface of F-Secure Internet Gatekeeper. The vulnerability occurs because of an attacker can trigger assertion via malformed HTTP packet to web interface. An unauthenticated attacker could exploit this vulnerability by sending a large username parameter. A successful exploitation could lead to a denial-of-service of the product.
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
EUVD-2021-20284 | A denial-of-service (DoS) vulnerability was discovered in the web user interface of F-Secure Internet Gatekeeper. The vulnerability occurs because of an attacker can trigger assertion via malformed HTTP packet to web interface. An unauthenticated attacker could exploit this vulnerability by sending a large username parameter. A successful exploitation could lead to a denial-of-service of the product. |
Fixes
Solution
FIX: Hotfix 9 will be published to fix this vulnerability. Download and instructions available at: https://www.f-secure.com/en/business/downloads/internet-gatekeeper
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: F-SecureUS
Published:
Updated: 2024-08-03T23:50:43.178Z
Reserved: 2021-05-27T00:00:00
Link: CVE-2021-33600

No data.

Status : Modified
Published: 2021-09-28T10:15:08.100
Modified: 2024-11-21T06:09:10.643
Link: CVE-2021-33600

No data.

No data.