Lucene search
K

247 matches found

seebug.org
seebug.org
added 2014/03/27 12:0 a.m.26 views

IBM Lotus Protector for Mail Security任意代码执行漏洞

Bugtraq ID:66405 CVE ID:CVE-2014-0886 IBM Lotus Protector for Mail Security是一项基于IBM Proventia网络邮件安全系统的防毒与反垃圾邮件解决方案。 IBM Lotus Protector for Mail Security存在一个未明安全漏洞,允许通过验证的远程攻击者执行任意代码。 0 IBM Lotus Protector for Mail Security 2.8.0.0 IBM Lotus Protector for Mail Security 2.8.1.0...

7.1CVSS6.6AI score0.01621EPSS
Exploits1
seebug.org
seebug.org
added 2014/03/27 12:0 a.m.34 views

IBM Lotus Protector for Mail Security跨站脚本漏洞

Bugtraq ID:66410 CVE ID:CVE-2014-0884 IBM Lotus Protector for Mail Security是一项基于IBM Proventia网络邮件安全系统的防毒与反垃圾邮件解决方案。 IBM Lotus Protector for Mail Security存在一个未明跨站脚本漏洞,远程攻击者可以利用漏洞构建恶意URI,诱使用户解析,可获得敏感Cookie,劫持会话或在客户端上进行恶意操作。 0 IBM Lotus Protector for Mail Security 2.8.0.0 IBM Lotus Protector for Mai...

3.5CVSS6.6AI score0.00759EPSS
Exploits1
NVD
NVD
added 2014/03/25 8:55 p.m.16 views

CVE-2014-0887

The Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to execute arbitrary commands with root privileges via unspecified vectors...

7.1CVSS7.1AI score0.01648EPSS
Exploits1References2
NVD
NVD
added 2014/03/25 8:55 p.m.19 views

CVE-2014-0886

The Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to bypass intended access restrictions and execute arbitrary commands via unspecified vectors...

7.1CVSS6.9AI score0.01621EPSS
Exploits1References2
NVD
NVD
added 2014/03/25 8:55 p.m.20 views

CVE-2014-0884

Cross-site scripting XSS vulnerability in the Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.1AI score0.00759EPSS
Exploits1References2
Prion
Prion
added 2014/03/25 8:55 p.m.16 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors...

6.8CVSS6.9AI score0.0057EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2014/03/25 8:55 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.5AI score0.00759EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2014/03/25 8:55 p.m.17 views

Command injection

The Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to execute arbitrary commands with root privileges via unspecified vectors...

7.1CVSS7.5AI score0.01648EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2014/03/25 8:0 p.m.56 views

CVE-2014-0885

CVE-2014-0885 affects IBM Lotus Protector for Mail Security, specifically the Admin Web UI in version 2.8.x before 2.8.1-22905. The vulnerability is a Cross-Site Request Forgery (CSRF) that allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors. ...

6.8CVSS6.7AI score0.0057EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2014/03/25 8:0 p.m.48 views

CVE-2014-0887

Summary: CVE-2014-0887 affects IBM Lotus Protector for Mail Security. The Admin Web UI in the 2.8.x branch (before 2.8.1-22905) allows remote authenticated users to execute arbitrary commands with root privileges via unspecified vectors. Affected versions: IBM Lotus Protector for Mail Security 2....

7.1CVSS7.2AI score0.01648EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2014/03/25 8:0 p.m.25 views

CVE-2014-0886

The Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to bypass intended access restrictions and execute arbitrary commands via unspecified vectors...

6.9AI score0.01621EPSS
Exploits1References2
CVE
CVE
added 2014/03/25 8:0 p.m.46 views

CVE-2014-0884

CVE-2014-0884 affects IBM Lotus Protector for Mail Security (Admin Web UI) on 2.8.x before 2.8.1-22905. A cross-site scripting (XSS) vulnerability allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. The root cause is not detailed in the provided docum...

3.5CVSS5.2AI score0.00759EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2014/03/25 8:0 p.m.46 views

CVE-2014-0886

CVE-2014-0886 affects IBM Lotus Protector for Mail Security 2.8.x prior to 2.8.1-22905, where the Admin Web UI allows remote authenticated users to bypass access restrictions and execute arbitrary commands via unspecified vectors. Affected product: IBM Lotus Protector for Mail Security (Admin Web...

7.1CVSS7.1AI score0.01621EPSS
Exploits1References2Affected Software1
Saint
Saint
added 2013/08/08 12:0 a.m.29 views

PineApp Mail-SeCure test_li_connection.php Command Injection

Added: 08/08/2013 BID: 61477 OSVDB: 95782 Background PineApp Mail-SeCure is an e-mail security appliance which provides perimeter security protection to stop threats prior to their penetration of the customer's network, as well as post-perimeter anti-spam content inspection. Problem PineApp...

0.8AI score
Exploits0
Saint
Saint
added 2013/08/08 12:0 a.m.39 views

PineApp Mail-SeCure test_li_connection.php Command Injection

Added: 08/08/2013 BID: 61477 OSVDB: 95782 Background PineApp Mail-SeCure is an e-mail security appliance which provides perimeter security protection to stop threats prior to their penetration of the customer's network, as well as post-perimeter anti-spam content inspection. Problem PineApp...

8.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/07/17 12:0 a.m.37 views

Symantec Mail Security for SMTP Autonomy KeyView Module Multiple Buffer Overflows

The remote windows host has a version of Symantec Mail Security installed that is shipped with the third-party Autonomy KeyView module, which is affected by multiple buffer overflow vulnerabilities that could allow a remote attacker to execute arbitrary code. C Tenable Network Security, Inc...

9.3CVSS6.3AI score0.05741EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2013/07/17 12:0 a.m.39 views

Symantec Mail Security for Exchange / Domino Autonomy KeyView Module Multiple Buffer Overflows

The remote windows host has a version of Symantec Mail Security installed that is shipped with the third-party Autonomy KeyView module, which is affected by multiple buffer overflow vulnerabilities. These issues could allow a remote attacker to execute arbitrary code. C Tenable Network Security,...

9.3CVSS6.3AI score0.05741EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2013/06/27 12:0 a.m.31 views

Symantec Mail Security for Exchange / Domino RAR and CAB Multiple Vulnerabilities

The remote host is running a version of the Symantec Mail Security for Exchange / Domino that is affected by multiple vulnerabilities : - A heap overflow vulnerability exists that can be triggered when the scanning engine processes a specially crafted CAB file, possibly leading to arbitrary code...

9.3CVSS5.9AI score0.05957EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2013/06/27 12:0 a.m.32 views

Symantec Mail Security for SMTP RAR and CAB Parsing Multiple Vulnerabilities

The remote host is running a version of the Symantec Mail Security for Exchange / Domino that is affected by multiple vulnerabilities : - A heap overflow vulnerability exists that can be triggered when the scanning engine processes a specially crafted CAB file, possibly leading to arbitrary code...

9.3CVSS5.9AI score0.05957EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2012/11/27 12:0 a.m.13 views

Symantec Mail Security Autonomy Verity Keyview Filter Vulnerabilities (SYM12-018)

The file attachment filter component included with the instance of Symantec Mail Security installed on the remote Windows host is reportedly affected by multiple, unspecified code execution vulnerabilities that can be triggered when handling attachments of various types. By sending an email with ...

6.1AI score
Exploits0References1
Rows per page
Query Builder