Lucene search
K

419 matches found

CVE
CVE
added 2007/07/31 10:0 a.m.44 views

CVE-2007-4100

CVE-2007-4100 affects MLDonkey prior to 2.9.0. The flaw occurs because the application does not load certain code from $MLDONKEY/web_infos/ before the network modules become active, allowing remote attackers to bypass the IP blocklist. The NVD entry lists a CVSSv2 base score of 5.0 (Medium) with ...

5CVSS6.9AI score0.01343EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2007/07/26 12:30 a.m.21 views

CVE-2007-4012

Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller WLC software 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service ARP storm via a broadcast ARP packet that "targets the IP address of a known client context", aka CSCsj50374...

7.1CVSS6.6AI score0.01684EPSS
Exploits0References7
Cvelist
Cvelist
added 2007/07/26 12:0 a.m.23 views

CVE-2007-4012

Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller WLC software 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service ARP storm via a broadcast ARP packet that "targets the IP address of a known client context", aka CSCsj50374...

6.6AI score0.01684EPSS
Exploits0References7
Cvelist
Cvelist
added 2007/07/26 12:0 a.m.26 views

CVE-2007-4011

Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller WLC software before 3.2 20070727, 4.0 before 20070727, and 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service traffic amplification or ARP storm via a crafted unicast ARP request that 1...

6.7AI score0.0163EPSS
Exploits0References6
CVE
CVE
added 2007/07/26 12:0 a.m.49 views

CVE-2007-4011

CVE-2007-4011 affects Cisco 4100/4400, Airespace 4000, and Catalyst 6500/3750 WLC software. The vulnerability permits remote DoS (traffic amplification or ARP storm) via crafted unicast ARP requests. Impact arises when the destination MAC is unknown to Layer-2 infrastructure (CSCsj69233) or durin...

7.1CVSS6.7AI score0.0163EPSS
Exploits0References6Affected Software1
seebug.org
seebug.org
added 2007/06/07 12:0 a.m.24 views

F5 FirePass 4100 SSL VPN My.Activiation.PHP3远程命令注入漏洞

F5's FirePass SSL VPN提供使用标准WEB浏览器对应用程序和数据进行安全访问的解决方案。 F5 FirePass 4100不正确过滤用户提交的输入,远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是'my.activation.php3'脚本对用户提交的'username'参数缺少过滤,在部分条件下允许用户注入Linux SHELL命令,导致以WEB权限执行。 F5 FirePass 4100 厂商解决方案 可参考如下安全公告获得补丁信息: https://tech.f5.com/home/solutions/sol167.html...

7AI score
Exploits0
NVD
NVD
added 2007/06/06 10:30 p.m.26 views

CVE-2007-3097

my.activation.php3 in F5 FirePass 4100 SSL VPN allows remote attackers to execute arbitrary shell commands via shell metacharacters in the username parameter...

7.5CVSS7.6AI score0.02204EPSS
Exploits0References8
Prion
Prion
added 2007/06/06 10:30 p.m.19 views

Design/Logic Flaw

my.activation.php3 in F5 FirePass 4100 SSL VPN allows remote attackers to execute arbitrary shell commands via shell metacharacters in the username parameter...

7.5CVSS8.2AI score0.02204EPSS
Exploits0References8
NVD
NVD
added 2006/07/13 12:5 a.m.25 views

CVE-2006-3550

Multiple cross-site scripting XSS vulnerabilities in F5 Networks FirePass 4100 5.x allow remote attackers to inject arbitrary web script or HTML via unspecified "writable form fields and hidden fields," including "authentication frontends."...

2.6CVSS5.8AI score0.01391EPSS
Exploits0References8
CVE
CVE
added 2006/07/13 12:0 a.m.51 views

CVE-2006-3550

CVE-2006-3550 concerns multiple cross-site scripting (XSS) vulnerabilities in F5 Networks FirePass 4100 5.x . The affected component is the web interface, with the flaw enabling remote attackers to inject arbitrary web script or HTML via unspecified "writable form fields and hidden fields," inclu...

2.6CVSS5.8AI score0.01391EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2006/07/13 12:0 a.m.27 views

CVE-2006-3550

Multiple cross-site scripting XSS vulnerabilities in F5 Networks FirePass 4100 5.x allow remote attackers to inject arbitrary web script or HTML via unspecified "writable form fields and hidden fields," including "authentication frontends."...

5.8AI score0.01391EPSS
Exploits0References8
securityvulns
securityvulns
added 2006/07/04 12:0 a.m.35 views

F5 FirePass 4100 security appliance crossite scripting

No description provided...

2.1AI score
Exploits0References1Affected Software1
Prion
Prion
added 2006/03/22 2:2 a.m.21 views

Cross site scripting

Cross-site scripting XSS vulnerability in my.support.php3 in F5 Firepass 4100 SSL VPN 5.4.2 allows remote attackers to inject arbitrary web script or HTML via the s parameter...

4.3CVSS6.1AI score0.01937EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2006/03/22 2:0 a.m.25 views

CVE-2006-1357

Cross-site scripting XSS vulnerability in my.support.php3 in F5 Firepass 4100 SSL VPN 5.4.2 allows remote attackers to inject arbitrary web script or HTML via the s parameter...

5.7AI score0.01937EPSS
Exploits1References7
securityvulns
securityvulns
added 2006/03/21 12:0 a.m.29 views

XSS in Firepass 4100 SSL VPN v.5.4.2 (and probably others)

Vulnerability class : Cross-Site Scripting Discovery date : 2nd of February 2006 Remote : Yes Local : No Credit : ILION Research Labs, Geneva Switzerland Vulnerable : F5 Firepass 4100 SSL VPN v. 5.4.2 A XSS Cross-Site-Scripting vulnerability has been uncovered in my.support.php3 called through a...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2006/03/21 12:0 a.m.52 views

F5 Firepass 4100 SSL VPN crossite scripting

Web interface crossite scripting...

1.4AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2006/03/21 12:0 a.m.14 views

F5 Firepass 4100 SSL VPN - Cross-Site Scripting

F5 Firepass 4100 SSL VPN - Cross-Site Scripting source: https://www.securityfocus.com/bid/17175/info FirePass 4100 SSL VPN is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2006/03/21 12:0 a.m.25 views

F5 Firepass 4100 SSL VPN - Cross-Site Scripting

source: https://www.securityfocus.com/bid/17175/info FirePass 4100 SSL VPN is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in th...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2000/08/17 12:0 a.m.26 views

DoS против Watchguard Firebox

Некорректная строка в порт авторизации TCP 4100 приводит к отказу сервиса...

0.4AI score
Exploits0References1
Rows per page
Query Builder