16 matches found
EUVD-2015-2146
Malware in sbrugna...
EUVD-2016-7407
Malware in sbrugna...
CVE-2016-6484
CRLF injection vulnerability in Infoblox Network Automation NetMRI before 7.1.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the contentType parameter in a login action to config/userAdmin/login.tdf...
CVE-2016-6484
CVE-2016-6484 affects Infoblox Network Automation NetMRI prior to 7.1.1. The vulnerability is a CRLF injection in the contentType parameter used in the login action at config/userAdmin/login.tdf, enabling remote attackers to inject arbitrary HTTP headers and perform HTTP response splitting. Publi...
Infoblox Network Automation HTTP Response Splitting Vulnerability
Infoblox Network Automation is a suite of automated network configuration and change management software from Infoblox USA. An HTTP response splitting vulnerability exists in Infoblox Network Automation versions 7.0.1 and 6.9.2, which can be exploited by an attacker to affect or tamper with web...
Infoblox Network Automation Cross-Site Scripting Vulnerability
Infoblox Network Automation is a suite of automated network configuration and change management software from Infoblox USA. The software has the ability to automate the review and analysis of network changes using built-in expert topics. A cross-site scripting vulnerability exists in Infoblox...
Infoblox 7.0.1 Cross Site Scripting
Exploit Title: Infoblox Cross-site scripting vulnerabilities Product: Infoblox Network Automation Vulnerable Versions: 7.0.1 and all previous versions Tested Version: 6.9.2 Advisory Publication: 06/09/2016 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference: NONE Credit: Alex Haynes...
Infoblox 7.0.1 CRLF Injection / HTTP Response Splitting
Exploit Title: CVE-2016-6484 Infoblox Network Automation CRLF Injection/ HTTP splitting vulnerability Product: Infoblox Network Automation Vulnerable Versions: 7.0.1 and all previous versions Tested Version: 6.9.2 Advisory Publication: 06/09/2016 Vulnerability Type: CWE-113: Improper Neutralizati...
CVE-2015-2033
Anyterm Daemon in Infoblox Network Automation NetMRI before NETMRI-23483 allows remote attackers to execute arbitrary commands with root privileges via a crafted terminal/anyterm-module request...
Server side request forgery (ssrf)
Anyterm Daemon in Infoblox Network Automation NetMRI before NETMRI-23483 allows remote attackers to execute arbitrary commands with root privileges via a crafted terminal/anyterm-module request...
CVE-2015-2033
Anyterm Daemon in Infoblox Network Automation NetMRI before NETMRI-23483 allows remote attackers to execute arbitrary commands with root privileges via a crafted terminal/anyterm-module request...
OS Command Injection Infoblox Network Automation
Product: Network Automation, licensed as: • NetMRI • Switch Port Manager • Automation Change Manager • Security Device Controller Vendor: Infoblox Vulnerable Versions: 6.4.X.X-6.8.4.X Tested Version: 6.8.2.11 Vendor Notification: May 12th, 2014 Vendor Patch Availability to Customers: May 16th, 20...
Infoblox 6.8.2.11 - OS Command Injection
No description provided by source. Product: Network Automation, licensed as: • NetMRI • Switch Port Manager • Automation Change Manager • Security Device Controller Vendor: Infoblox Vulnerable Versions: 6.4.X.X-6.8.4.X Tested Version: 6.8.2.11 Vendor Notification: May 12th, 2014 Vendor Patch...
Infoblox 6.8.2.11 - OS Command Injection / Weak MySQL Password Vulnerability
Infoblox versions 6.4.x.x through 6.8.4.x suffer from a remote OS command injection and use a default login of root with password root on their MySQL instances. Product: Network Automation, licensed as: • NetMRI • Switch Port Manager • Automation Change Manager • Security Device Controller Vendor...
Infoblox 6.8.4.x OS Command Injection
Product: Network Automation, licensed as: NetMRI Switch Port Manager Automation Change Manager Security Device Controller Vendor: Infoblox Vulnerable Versions: 6.4.X.X-6.8.4.X Tested Version: 6.8.2.11 Vendor Notification: May 12th, 2014 Vendor Patch Availability to Customers: May 16th, 20...
Infoblox 6.8.4.x Weak MySQL Password
Product: Network Automation NetMRI Switch Port Manager Automation Change Manager Security Device Controller Vendor: InfoBlox Vulnerable Versions: 6.4.X.X-6.8.4.X Tested Version: 6.8.2.11 Vendor Notification: May 12th, 2014 Public Disclosure: July 9th, 2014 Vulnerability Type: OS Command...