4666 matches found
SonicWALL Continues Data Protection multiple security vulnerabilities
Multiple web interface vulnerabilities...
SonicWALL CDP 5040 6.x - Multiple Vulnerabilities
SonicWALL CDP 5040 6.x - Multiple Vulnerabilities Title: ====== SonicWALL CDP 5040 v6.x - Multiple Web Vulnerabilities Date: ===== 2012-11-19 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=549 VL-ID: ===== 549 Common Vulnerability Scoring System:...
SonicWALL CDP 5040 v6.x - Multiple Web Vulnerabilities
Document Title: =============== SonicWALL CDP 5040 v6.x - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=549 Release Date: ============= 2012-11-18 Vulnerability Laboratory ID VL-ID: ==================================== 549...
CVE-2012-4613
EMC RSA Data Protection Manager Appliance 2.7.x and 3.x before 3.2.1 does not properly restrict the number of authentication attempts by a user account, which makes it easier for local users to bypass intended access restrictions via a brute-force attack...
CVE-2012-4612
Cross-site scripting XSS vulnerability in EMC RSA Data Protection Manager Appliance and Software Server 2.7.x and 3.x before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Authentication flaw
EMC RSA Data Protection Manager Appliance 2.7.x and 3.x before 3.2.1 does not properly restrict the number of authentication attempts by a user account, which makes it easier for local users to bypass intended access restrictions via a brute-force attack...
Cross site scripting
Cross-site scripting XSS vulnerability in EMC RSA Data Protection Manager Appliance and Software Server 2.7.x and 3.x before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2012-4612
Cross-site scripting XSS vulnerability in EMC RSA Data Protection Manager Appliance and Software Server 2.7.x and 3.x before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2012-4613
EMC RSA Data Protection Manager Appliance 2.7.x and 3.x before 3.2.1 does not properly restrict the number of authentication attempts by a user account, which makes it easier for local users to bypass intended access restrictions via a brute-force attack...
CVE-2012-4612
CVE-2012-4612 is an XSS vulnerability in RSA Data Protection Manager Appliance and Software Server 2.7.x and 3.x prior to 3.2.1. The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. According to the primary sources, affected products include RSA DPM Ap...
EMC NetWorker Installed
EMC NetWorker formerly Legato NetWorker, a suite of enterprise level data protection software, is installed on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid62945; scriptversion"1.14"; scriptsetattributeattribute:"pluginmodificationdate",...
ESA-2012-055: RSA® Data Protection Manager Multiple Vulnerabilities
ESA-2012-055.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2012-055: RSA® Data Protection Manager Multiple Vulnerabilities EMC Identifier: ESA-2012-055 CVE Identifier: CVE-2012-4612, CVE-2012-4613 Severity Rating: See below for individual scores and refer vendor advisories for component...
South Carolina Data Breach Casts Spotlight on Lack of Encryption, Stolen Credentials
South Carolina governor Nikki Haley said a mouthful this week when she spilled a dirty industry secret that Social Security numbers are generally not encrypted by state agencies. Reeling from a Department of Revenue data breach that leaked 3.6 million Social Security and credit card numbers as we...
SonicWALL CDP 5040 v6.x Multiple Vulnerabilities
Exploit for php platform in category web applications SonicWALL CDP 5040 v6.x - Multiple Web Vulnerabilities Introduction: ============= Tapeless Enterprise-Level Data Backup and Protection, Without the Price Tag. Automatic, real-time data backup for servers, laptops and PCs. Features include fil...
Julian Assange's Book 'Cypherpunks' - Freedom and the Future of the Internet
Julian Assange publish a book based on his interview "Cypherpunks" on "The World Tomorrow", his controversial talk show, with the people he believes know the solution to the problems of privacy and freedom. The book called 'Cypherpunks: Freedom and the Future of the Internet,' was written by...
Attorneys Warn of Increased Risk of Big Data Breach Lawsuits
Two attorneys for a prominent law firm warn that courts are starting to look more favorably on class-action lawsuits brought by data breach victims, who historically have had trouble proving actual damages from the thefts. “A recent survey of data breach litigation found that the average settleme...
F5 FirePass SSL VPN 4xxx Series | Arbitrary URL Redirection
OVERVIEW F5 FirePass SSL VPN is vulnerable to Open URL Redirection. 2. BACKGROUND F5 FirePass SSL VPN provides secure remote access to enterprise applications and data for users over any device or network while protecting your corporate. See http://www.f5.com/pdf/products/firepass-overview.pdf...
CVE-2012-3746
UIWebView in UIKit in Apple iOS before 6 does not properly use the Data Protection feature, which allows context-dependent attackers to obtain cleartext file content by leveraging direct access to a device's filesystem...
CVE-2012-3734
Office Viewer in Apple iOS before 6 writes cleartext document data to a temporary file, which might allow local users to bypass a document's intended 1 Data Protection level or 2 encryption state by reading the temporary content...
CVE-2012-3731
Mail in Apple iOS before 6 does not properly implement the Data Protection feature for e-mail attachments, which allows physically proximate attackers to bypass an intended passcode requirement via unspecified vectors...