12 matches found
WSO2多款产品 安全漏洞
WSO2 API Manager is an API lifecycle management solution, WSO2 API Manager Analytics is an analytics component, and WSO2 API Control Plane is a control panel. A security vulnerability exists in a number of WSO2 products. The vulnerability stems from insufficient enforcement of permissions in the...
EUVD-2012-4517
Malware in sbrugna...
EUVD-2012-4512
Malware in sbrugna...
EUVD-2012-4515
Malware in sbrugna...
CVE-2012-4588
McAfee Enterprise Mobility Manager EMM Agent before 4.8 and Server before 10.1 record all invalid usernames presented in failed login attempts, and place them on a list of accounts that an administrator may wish to unlock, which allows remote attackers to cause a denial of service excessive list...
CVE-2012-4591
About.aspx in the Portal in McAfee Enterprise Mobility Manager EMM before 10.0 discloses the name of the user account for an IIS worker process, which allows remote attackers to obtain potentially sensitive information by visiting this page...
Design/Logic Flaw
Login.aspx in the Portal in McAfee Enterprise Mobility Manager EMM before 10.0 does not have an off autocomplete attribute for unspecified form fields, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation...
Code injection
About.aspx in the Portal in McAfee Enterprise Mobility Manager EMM before 10.0 discloses the name of the user account for an IIS worker process, which allows remote attackers to obtain potentially sensitive information by visiting this page...
Code injection
McAfee Enterprise Mobility Manager EMM Agent before 4.8 and Server before 10.1 record all invalid usernames presented in failed login attempts, and place them on a list of accounts that an administrator may wish to unlock, which allows remote attackers to cause a denial of service excessive list...
CVE-2012-4588
McAfee Enterprise Mobility Manager EMM Agent before 4.8 and Server before 10.1 record all invalid usernames presented in failed login attempts, and place them on a list of accounts that an administrator may wish to unlock, which allows remote attackers to cause a denial of service excessive list...
CVE-2012-4589
CVE-2012-4589 affects McAfee Enterprise Mobility Manager (EMM) Portal login.aspx prior to version 10.0. The issue is that the login form fields lack the off autocomplete attribute, which can let an unattended workstation be abused to gain access. This is described in the NVD entry for CVE-2012-45...
CVE-2012-4589
Login.aspx in the Portal in McAfee Enterprise Mobility Manager EMM before 10.0 does not have an off autocomplete attribute for unspecified form fields, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation...