52 matches found
CVE-2009-4879
The Identity Server in Novell Access Manager before 3.1 SP1 allows attackers with disabled Active Directory accounts to authenticate using X.509 authentication, which bypasses intended access restrictions...
EUVD-2008-6682
Malware in sbrugna...
EUVD-2007-3554
Malware in sbrugna...
EUVD-2009-4842
Malware in sbrugna...
EUVD-2009-4841
Malware in sbrugna...
EUVD-2017-6291
Malware in sbrugna...
EUVD-2010-0315
Malware in sbrugna...
EUVD-2017-18212
Malware in sbrugna...
EUVD-2007-0114
Malware in sbrugna...
Micro Focus Novell Access Manager iManager Cross-Site Scripting Vulnerability
Micro Focus Novell Access Manager is a comprehensive Web access management solution from Micro Focus UK. iManager is one of the Web-based applications that can manage and configure eDirectory objects using wireless devices. A cross-site scripting vulnerability exists in Micro Focus Novell Access...
Micro Focus Novell Access Manager Admin Console and IDP Server Open Redirect Vulnerability
Micro Focus Novell Access Manager is a comprehensive Web access management solution from Micro Focus, U.K. Admin Console is one of the management consoles, and IDP servers are one of the IDP servers. A security vulnerability exists in the Micro Focus Novell Access Manager Admin Console and IDP...
CVE-2017-14802
Novell Access Manager Admin Console and IDP servers before 4.3.3 have a URL that could be used by remote attackers to trigger unvalidated redirects to third party sites...
Code injection
Novell Access Manager Admin Console and IDP servers before 4.3.3 have a URL that could be used by remote attackers to trigger unvalidated redirects to third party sites...
CVE-2017-14802
Novell Access Manager Admin Console and IDP servers before 4.3.3 have a URL that could be used by remote attackers to trigger unvalidated redirects to third party sites...
Cross site scripting
Novell Access Manager iManager before 4.3.3 did not validate parameters so that cross site scripting content could be reflected back into the result page using the "a" parameter...
CVE-2017-9276
Novell Access Manager iManager before 4.3.3 did not validate parameters so that cross site scripting content could be reflected back into the result page using the "a" parameter...
CVE-2017-9276 XSS Vulnerability in iManager
Novell Access Manager iManager before 4.3.3 did not validate parameters so that cross site scripting content could be reflected back into the result page using the "a" parameter...
CVE-2017-14802
CVE-2017-14802 affects Micro Focus Novell Access Manager Admin Console and IDP servers prior to version 4.3.3, which expose an unvalidated redirect vulnerability that could be exploited by remote attackers to redirect users to third‑party sites. The public records indicate impacted products are N...
CVE-2017-9276
The CVE-2017-9276 entry describes a cross-site scripting (XSS) vulnerability in Micro Focus Novell Access Manager iManager prior to version 4.3.3. The root cause is that iManager failed to validate parameters, allowing XSS content to be reflected back into the result page via the parameter "a". P...
Novell Access Manager 3 Identity Server IssueInstant Parameter Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/21921/info Access Manager Identity Server is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary scri...