247 matches found
IBM Lotus Protector for Mail Security任意代码执行漏洞
Bugtraq ID:66405 CVE ID:CVE-2014-0886 IBM Lotus Protector for Mail Security是一项基于IBM Proventia网络邮件安全系统的防毒与反垃圾邮件解决方案。 IBM Lotus Protector for Mail Security存在一个未明安全漏洞,允许通过验证的远程攻击者执行任意代码。 0 IBM Lotus Protector for Mail Security 2.8.0.0 IBM Lotus Protector for Mail Security 2.8.1.0...
IBM Lotus Protector for Mail Security跨站脚本漏洞
Bugtraq ID:66410 CVE ID:CVE-2014-0884 IBM Lotus Protector for Mail Security是一项基于IBM Proventia网络邮件安全系统的防毒与反垃圾邮件解决方案。 IBM Lotus Protector for Mail Security存在一个未明跨站脚本漏洞,远程攻击者可以利用漏洞构建恶意URI,诱使用户解析,可获得敏感Cookie,劫持会话或在客户端上进行恶意操作。 0 IBM Lotus Protector for Mail Security 2.8.0.0 IBM Lotus Protector for Mai...
CVE-2014-0887
The Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to execute arbitrary commands with root privileges via unspecified vectors...
CVE-2014-0886
The Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to bypass intended access restrictions and execute arbitrary commands via unspecified vectors...
CVE-2014-0884
Cross-site scripting XSS vulnerability in the Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in the Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in the Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...
Command injection
The Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to execute arbitrary commands with root privileges via unspecified vectors...
CVE-2014-0885
CVE-2014-0885 affects IBM Lotus Protector for Mail Security, specifically the Admin Web UI in version 2.8.x before 2.8.1-22905. The vulnerability is a Cross-Site Request Forgery (CSRF) that allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors. ...
CVE-2014-0887
Summary: CVE-2014-0887 affects IBM Lotus Protector for Mail Security. The Admin Web UI in the 2.8.x branch (before 2.8.1-22905) allows remote authenticated users to execute arbitrary commands with root privileges via unspecified vectors. Affected versions: IBM Lotus Protector for Mail Security 2....
CVE-2014-0886
The Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to bypass intended access restrictions and execute arbitrary commands via unspecified vectors...
CVE-2014-0884
CVE-2014-0884 affects IBM Lotus Protector for Mail Security (Admin Web UI) on 2.8.x before 2.8.1-22905. A cross-site scripting (XSS) vulnerability allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. The root cause is not detailed in the provided docum...
CVE-2014-0886
CVE-2014-0886 affects IBM Lotus Protector for Mail Security 2.8.x prior to 2.8.1-22905, where the Admin Web UI allows remote authenticated users to bypass access restrictions and execute arbitrary commands via unspecified vectors. Affected product: IBM Lotus Protector for Mail Security (Admin Web...
PineApp Mail-SeCure test_li_connection.php Command Injection
Added: 08/08/2013 BID: 61477 OSVDB: 95782 Background PineApp Mail-SeCure is an e-mail security appliance which provides perimeter security protection to stop threats prior to their penetration of the customer's network, as well as post-perimeter anti-spam content inspection. Problem PineApp...
PineApp Mail-SeCure test_li_connection.php Command Injection
Added: 08/08/2013 BID: 61477 OSVDB: 95782 Background PineApp Mail-SeCure is an e-mail security appliance which provides perimeter security protection to stop threats prior to their penetration of the customer's network, as well as post-perimeter anti-spam content inspection. Problem PineApp...
Symantec Mail Security for SMTP Autonomy KeyView Module Multiple Buffer Overflows
The remote windows host has a version of Symantec Mail Security installed that is shipped with the third-party Autonomy KeyView module, which is affected by multiple buffer overflow vulnerabilities that could allow a remote attacker to execute arbitrary code. C Tenable Network Security, Inc...
Symantec Mail Security for Exchange / Domino Autonomy KeyView Module Multiple Buffer Overflows
The remote windows host has a version of Symantec Mail Security installed that is shipped with the third-party Autonomy KeyView module, which is affected by multiple buffer overflow vulnerabilities. These issues could allow a remote attacker to execute arbitrary code. C Tenable Network Security,...
Symantec Mail Security for Exchange / Domino RAR and CAB Multiple Vulnerabilities
The remote host is running a version of the Symantec Mail Security for Exchange / Domino that is affected by multiple vulnerabilities : - A heap overflow vulnerability exists that can be triggered when the scanning engine processes a specially crafted CAB file, possibly leading to arbitrary code...
Symantec Mail Security for SMTP RAR and CAB Parsing Multiple Vulnerabilities
The remote host is running a version of the Symantec Mail Security for Exchange / Domino that is affected by multiple vulnerabilities : - A heap overflow vulnerability exists that can be triggered when the scanning engine processes a specially crafted CAB file, possibly leading to arbitrary code...
Symantec Mail Security Autonomy Verity Keyview Filter Vulnerabilities (SYM12-018)
The file attachment filter component included with the instance of Symantec Mail Security installed on the remote Windows host is reportedly affected by multiple, unspecified code execution vulnerabilities that can be triggered when handling attachments of various types. By sending an email with ...