1. Skip to navigation
  2. Skip to content
  3. Skip to sidebar

Product Security

FSC-2011-1: Log File Access Vulnerability


Brief Description

An attacker can gain unauthorized access to information stored in log files.

Affected Platforms   

All platforms supported by the affected products.


Risk Level: MEDIUM (Low/Medium/High/Critical)

•  F-Secure Internet Gatekeeper for Linux 3.x


The affected product version is not the latest in the product line. The recommended solution is to upgrade to version 4.x. A hotfix is provided for installations where upgrade is not possible.

Mitigating Factors

Limiting access to the admin UI port for the affected product by using network security functionality, such as firewalls, will also limit the range of computers that can attempt to utilize this vulnerability. Such limitation may already be in place in many environments.


F-Secure Corporation wants to thank Hiroshi Mizoguchi of Easynet Inc. for bringing this issue to our attention.

Patch Available

Product Versions        Download
F-Secure Internet Gatekeeper for Linux    3.x Apply the following hotfix:
ftp://ftp.f-secure.com/support/hotfix/fsig-linux/f-secure-internet-gatekeeper-3.03.1307-hotfix-1.tar.gz or
install product version 3.03 or
upgrade the product to version 4.x (recommended)

Date Issued: 2011-02-15
Last Updated: 2011-02-15

Get Support online

For documentation and product support, visit our Support site.


F-Secure Community

Give advice. Get advice. Share the knowledge on our free discussion forum.