538 matches found
SOL12953 - A Cross-Site Scripting (XSS) vulnerability exists in the BIG-IP ASM Web Scraping feature
To determine if the BIG-IP ASM configuration contains any vulnerable security policies, check whether the policies configured on the system have the Web Scraping feature set to Block. To do so, open the Configuration utility and navigate to Application Security Policy List policyname Blocking...
Security feature bypass
Unspecified vulnerability in clsetup in the configuration utility in Sun Solaris Cluster 3.2 allows local users to gain privileges via unknown vectors...
CVE-2009-3433
Technical details about CVE-2009-3433 are not provided in the connected documents or initial description; information on affected components, root cause, and fixes is not publicly disclosed here. Monitor for updates.
CVE-2009-3433
Unspecified vulnerability in clsetup in the configuration utility in Sun Solaris Cluster 3.2 allows local users to gain privileges via unknown vectors...
Apple iPhone Configuration Web Utility directory traversal
ACcess outside web root is possible...
Important: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix various security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...
SOL8406 - The BIG-IP ASM web management interface cross-site scripting vulnerability CVE-2008-0539
The F5 BIG-IP ASM web management interface contains a cross-site scripting vulnerability in the Security Report function. The vulnerability is within the BIG-IP ASM portion of the Configuration utility and can be accessed successfully only if the browser user is authenticated and the BIG-IP ASM...
SOL4369 - Configuration utility login vulnerability - CR45786
BIG-IP 9.0.2 through 9.0.4 cache login credentials for the Configuration utility. Once a user is logged in, the cache does not check the password entered for additional sessions under that user name. As a result, it is possible to gain access to the BIG-IP Configuration utility without a password...
About Trojans hidden in the Windows of the new method-vulnerability warning-the black bar safety net
Well known Trojans generally start way: load to the“Start”menu in the“start”entry, recording to the registry HKEYCURRENTUSERSoftwareMicrosoftwindowscurrentversionrun items and HKEYLOCALMACHINESOFTWAREMicrosoftwindowscurrentversionRun key, more advanced Trojans will also be registered as a...
FlexWATCH.txt
------------------ u0xa ------------------------ Author: SLAIZER mail: slaizeratphreaker.net Date: Sun/Oct/26/2003 -------"Another way of seeing the things"-------- ------------------------------------------------- Unauthorized access Vulnerability in FlexWATCH camera Server...
Linuxconf 1.1.x1.2.x - Local Environment Variable Buffer Overflow (2)
Linuxconf 1.1.x1.2.x - Local Environment Variable Buffer Overflow 2 // source: https://www.securityfocus.com/bid/5585/info Linuxconf is a Linux configuration utility from Solucorp. It is typically installed as a setuid root utility for the management and configuration of Linux operating systems. ...
Linuxconf 1.1.x/1.2.x - Local Environment Variable Buffer Overflow (2)
// source: https://www.securityfocus.com/bid/5585/info Linuxconf is a Linux configuration utility from Solucorp. It is typically installed as a setuid root utility for the management and configuration of Linux operating systems. A buffer overflow vulnerability has been reported for Linuxconf. The...
CVE-2002-0250
Web configuration utility in HP AdvanceStack hubs J3200A through J3210A with firmware version A.03.07 and earlier, allows unauthorized users to bypass authentication via a direct HTTP request to the webaccess.html file, which allows the user to change the switch's configuration and modify the...
CVE-2001-1065
CVE-2001-1065 affects Cisco 600-series routers running CBOS 2.0.1–2.4.2ap, where the web-based configuration utility binds to port 80 even when web configuration services are disabled. This could leave the device accessible to an attacker via the web interface. Root cause: the process binds port ...
Tech-Source Raptor GFX PGX32 2.3.1 - Config Tool
Tech-Source Raptor GFX PGX32 2.3.1 - Config Tool source: https://www.securityfocus.com/bid/1563/info Raptor GFX cards are designed to handle 24-bit true color applications such as Netscape, seismic, geographical information systems GIS, satellite imaging, pre-press imaging and general desktop use...
Linuxconf 1.1.6 r10 - Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/2352/info Linuxconf is a Linux configuration utility from Solucorp. An attacker supplying excess data to the USERAGENT field in vulnerable versions of Linuxconf. This data can overflow the relevant buffer, creating a stack overflow and, properly...
openlink.3.2.txt
Overview: A serious security hole has been found in the web configuration utility that comes with OpenLink 3.2. This hole will allow remote users to execute arbitrary code as the user id under which the web configurator is run inherited from the request broker, oplrqb. The hole is a run-of-the-mi...
OpenLink Software OpenLink 3.2 - Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/720/info Both the Unix and WindowsNT versions of OpenLink 3.2 are vulnerable to a remotely exploitable buffer overflow attack. The problem is in their web configuration utility, and is the result of an unchecked strcpy call. The consequence is the...