249 matches found
Infoblox NetMRI 6.2.1 - Admin Login Page Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/50646/info Infoblox NetMRI is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage these issues to execute arbitrary...
Default Password (infoblox) for 'admin' Account
The account 'admin' on the remote host has the password 'infoblox'. An attacker may leverage this issue to gain total control of the affected system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. account = "admin"; password = "infoblox"; include'deprecatednasllevel.inc'; include'compat.inc...
Infoblox IPAM Appliance Default Credentials
The remote host appears to be running Infoblox IPAM appliance. Nessus was able to log into the remote web console using default credentials. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid42212; scriptversion"1.12...
CVE-2002-2213
The DNS resolver in unspecified versions of Infoblox DNS One, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record RR combined with spoofed...
CVE-2002-2213
The CVE-2002-2213 entry describes a vulnerability in the DNS resolver of Infoblox DNS One (unspecified versions) where recursive resolution for arbitrary hosts can be poisoned via a birthday attack. This attack uses a large number of open queries for the same resource record and spoofed responses...
CVE-2004-0606
Cross-site scripting XSS vulnerability in Infoblox DNS One running firmware 2.4.0-8 and earlier allows remote attackers to execute arbitrary scripts as other users via the 1 CLIENTID or 2 HOSTNAME option of a DHCP request...
CVE-2004-0606
Cross-site scripting XSS vulnerability in Infoblox DNS One running firmware 2.4.0-8 and earlier allows remote attackers to execute arbitrary scripts as other users via the 1 CLIENTID or 2 HOSTNAME option of a DHCP request...
CVE-2004-0606
CVE-2004-0606 affects Infoblox DNS One firmware
CVE-2002-2213
The DNS resolver in unspecified versions of Infoblox DNS One, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record RR combined with spoofed...