CVE-2014-8520

McAfee Network Data Loss Prevention NDLP before 9.3 allows remote attackers to obtain sensitive information via vectors related to open network ports...

CVE-2014-8523

Cross-site request forgery CSRF vulnerability in McAfee Network Data Loss Prevention NDLP before 9.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

CVE-2014-8533

McAfee Network Data Loss Prevention NDLP before 9.3 allows remote attackers to execute arbitrary code via vectors related to ICMP redirection...

CVE-2014-8519

Unspecified vulnerability in McAfee Network Data Loss Prevention NDLP before 9.2.2 allows local users to read arbitrary files via unknown vectors...

CVE-2014-8530

The vulnerability CVE-2014-8530 affects McAfee Network Data Loss Prevention (NDLP) before version 9.3. It is described as an unspecified vulnerability allowing remote attackers to obtain sensitive information, impact integrity, or cause a denial of service via unknown vectors, with the issue rela...

CVE-2014-8525

McAfee Network Data Loss Prevention NDLP before 9.3 does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie...

CVE-2014-8537

CVE-2014-8537 affects McAfee Network Data Loss Prevention (NDLP) prior to version 9.2.2. The vulnerability allows local users to obtain sensitive information by reading NDLP logs. The available documents confirm the affected product and the basic impact (information disclosure via logs); a deeper...

CVE-2014-8520

CVE-2014-8520 affects McAfee Network Data Loss Prevention (NDLP) older than version 9.3. Public sources describe an information disclosure vulnerability where remote attackers can obtain sensitive data via vectors related to open network ports. The available documents do not provide specific tech...

CVE-2014-8532

Technical details about CVE-2014-8532 are not publicly available in the provided documents. The records describe an unspecified vulnerability in McAfee NDLP prior to 9.3 but do not specify affected components, root cause, or fixes. Monitor for updates.

CVE-2014-8530

Unspecified vulnerability in McAfee Network Data Loss Prevention NDLP before 9.3 allows remote attackers to obtain sensitive information, affect integrity, or cause a denial of service via unknown vectors, related to simultaneous logins...

CVE-2014-8519

McAfee Network Data Loss Prevention (NDLP)

CVE-2014-8532

Unspecified vulnerability in McAfee Network Data Loss Prevention before NDLP before 9.3 allows local users to obtain sensitive information and impact integrity via unknown vectors, related to partition mounting...

CVE-2014-8522

CVE-2014-8522 concerns the MySQL database component used by McAfee Network Data Loss Prevention (NDLP). The vulnerability stems from the NDLP deployment permitting unauthenticated access to its MySQL database prior to version 9.3, meaning remote attackers could gain access without credentials. Pu...

CVE-2014-8534

Technical details such as affected products/versions, root cause, exploitability, or fixes are not publicly provided in the connected documents. Monitor for updates from vendors and advisories to obtain concrete information.

CVE-2014-8523

CVE-2014-8523 describes a CSRF vulnerability in McAfee Network Data Loss Prevention (NDLP) prior to version 9.3. The flaw could allow remote attackers to hijack the authentication of unspecified victims via unknown vectors; the exact attack vectors and exploited components are not detailed in the...

Gamespy Software Development Kit CD-Key Validation Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11881/info It has been reported that the GameSpy SDK is prone to a buffer overflow vulnerability in its CD-key validation functionality. This issue is due to a failure of the SDK to properly check the length of...

War Times Remote Game Server Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13652/info War Times is susceptible to a remote denial of service vulnerability. This issue is due to a failure of the application to properly bounds check user-supplied network data prior to copying it into a fixed-size...

Epic Games Unreal Tournament Server 436.0 Engine Remote Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9840/info A format string vulnerability has been reported to exists in the Unreal Tournament server engine. This issue is due to a failure of the server application to properly sanitize user supplied network data...

Veritas Backup Exec Remote Agent Detection (NDMP)

Network Data Management Protocol NDMP based detection of the Veritas Backup Exec Agent. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Eddie Schwartz of RSA

Eddie Schwartz, CISO of RSA, emphasized the need for enterprises to use the data they have on their networks to help defend against targeted attacks...