163 matches found
TIBCO Slingshot Information Disclosure Vulnerability
TIBCO Managed File Transfer is an enterprise-class peer-to-peer file transfer solution. A security vulnerability exists in the TIBCO Managed File Transfer engine that could be exploited by remote attackers to submit a special HTTP request to obtain sensitive information...
CVE-2015-5711
TIBCO Managed File Transfer Internet Server before 7.2.5, Managed File Transfer Command Center before 7.2.5, Slingshot before 1.9.4, and Vault before 2.0.1 allow remote authenticated users to obtain sensitive information via a crafted HTTP request...
CVE-2015-5711
The CVE-2015-5711 entry affects TIBCO products: Managed File Transfer Internet Server (before 7.2.5), Managed File Transfer Command Center (before 7.2.5), Slingshot (before 1.9.4), and Vault (before 2.0.1). The root cause is an information disclosure vulnerability that allows remote authenticated...
CVE-2015-5711
TIBCO Managed File Transfer Internet Server before 7.2.5, Managed File Transfer Command Center before 7.2.5, Slingshot before 1.9.4, and Vault before 2.0.1 allow remote authenticated users to obtain sensitive information via a crafted HTTP request...
Buffer overflow
TIBCO Managed File Transfer Internet Server before 7.2.4, Managed File Transfer Command Center before 7.2.4, Slingshot before 1.9.3, and Vault before 1.1.1 allow remote attackers to obtain sensitive information or modify data by leveraging agent access...
CVE-2014-7194
CVE-2014-7194 affects TIBCO MFT Internet Server prior to 7.2.4, MFT Command Center prior to 7.2.4, Slingshot prior to 1.9.3, and Vault prior to 1.1.1. The issue allows remote attackers to obtain sensitive information or modify data by exploiting agent access. No exploitation details, affected ver...
CVE-2014-7194
TIBCO Managed File Transfer Internet Server before 7.2.4, Managed File Transfer Command Center before 7.2.4, Slingshot before 1.9.3, and Vault before 1.1.1 allow remote attackers to obtain sensitive information or modify data by leveraging agent access...
Cross site request forgery (csrf)
TIBCO Managed File Transfer Internet Server before 7.2.2, Managed File Transfer Command Center before 7.2.2, Slingshot before 1.9.1, and Vault before 1.0.1 allow remote attackers to obtain sensitive information via a crafted HTTP request...
CVE-2014-2545
TIBCO Managed File Transfer Internet Server before 7.2.2, Managed File Transfer Command Center before 7.2.2, Slingshot before 1.9.1, and Vault before 1.0.1 allow remote attackers to obtain sensitive information via a crafted HTTP request...
CVE-2014-2545
CVE-2014-2545 affects TIBCO MFT Internet Server, MFT Command Center, Slingshot, and Vault, where versions prior to 7.2.2 (and Slingshot before 1.9.1; Vault before 1.0.1) expose sensitive information via a crafted HTTP request. Root cause is unclear in the provided documents beyond the effect on t...
Security Risks of FTP and Benefits of Managed File Transfer
None...
CVE-2012-5954
Unspecified vulnerability in IBM Tivoli Storage Manager for Space Management aka TSM HSM before 6.2.5.0 and 6.3.x before 6.3.1.0 allows remote attackers to read or modify HSM-managed file system objects via unknown vectors...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in the Web Gateway component in IBM WebSphere MQ File Transfer Edition 7.0.4 and earlier, and WebSphere MQ - Managed File Transfer 7.5, allow remote attackers to hijack the authentication of arbitrary users for requests that 1 add user...
CVE-2011-3424
Session fixation vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to hijack web sessions via unspecified...
CVE-2011-3423
Cross-site scripting XSS vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to inject arbitrary web script or...
Cross site scripting
Cross-site scripting XSS vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to inject arbitrary web script or...
Session fixation
Session fixation vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to hijack web sessions via unspecified...
CVE-2011-3424
Session fixation vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to hijack web sessions via unspecified...
CVE-2011-3424
CVE-2011-3424 affects TIBCO Managed File Transfer Internet Server (7.0.x–7.1.0) and Command Center (7.0.x–7.1.0), and TIBCO Slingshot (1.8.0 and earlier). Root cause: defects in processing inbound HTTP requests leading to a session fixation vulnerability that can allow an attacker to hijack a web...
CVE-2011-3423
Cross-site scripting XSS vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to inject arbitrary web script or...