869 matches found
CVE-2013-4091
The SecureSphere Operations Manager SOM Management Server in Imperva SecureSphere 9.0.0.5 does not have an off autocomplete attribute for the password aka jpassword field on the secsphLogin.jsp login page, which makes it easier for remote attackers to obtain access by leveraging an unattended...
CVE-2013-4091
Affected product: Imperva SecureSphere SOM Management Server (SOM) version 9.0.0.5. Vulnerability: The secsphLogin.jsp login page’s j_password field does not have an off autocomplete attribute, enabling password exposure on unattended workstations. Impact/Context: This condition can make it easie...
Open redirect
Open redirect vulnerability in the help page in Cisco Video Surveillance Operations Manager allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL, aka Bug ID CSCty74490...
CVE-2013-3376
Cisco CVE-2013-3376 is an open-redirect vulnerability in the help page of Cisco Video Surveillance Operations Manager. The root cause is insufficient validation of user-supplied input, allowing unauthenticated, remote attackers to craft a URL that redirects victims to arbitrary sites (phishing ri...
Cisco Video Surveillance Operations Manager Help Page Redirect Vulnerability
A vulnerability in the help page of the Cisco Video Surveillance Operations Manager could allow an unauthenticated, remote attacker to load remote web pages on a victim's web browser. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this...
Imperva SecureSphere Operations Manager Command Execution Vulnerability
Imperva SecureSphere Operations Manager version 9.0.0.5 Enterprise Edition suffers from path disclosure, command execution, and arbitrary file upload vulnerabilities. Tittle: Imperva SecureSphere Operations Manager - Command Execution Post Authentication & Minor issues Risk: High Date: 27.May.201...
Imperva SecureSphere Operations Manager 9.0.0.5 - Multiple Vulnerabilities
Imperva SecureSphere Operations Manager 9.0.0.5 - Multiple Vulnerabilities Original: http://www.digitalsec.net/stuff/explt+advs/Imperva-SecureSphere.OptMgr.txt =============================== - Advisory - =============================== Tittle: Imperva SecureSphere Operations Manager - Command...
Imperva SecureSphere Operations Manager 9.0.0.5 - Multiple Vulnerabilities
Original: http://www.digitalsec.net/stuff/explt+advs/Imperva-SecureSphere.OptMgr.txt =============================== - Advisory - =============================== Tittle: Imperva SecureSphere Operations Manager - Command Execution Post Authentication & Minor issues Risk: High Date: 27.May.2013...
Imperva SecureSphere Operations Manager multiple security vulnerabilities
Multiple web interface vulnerabilities...
Imperva SecureSphere Operations Manager version 9.0.0.5 - Multiple issues
Original: http://www.digitalsec.net/stuff/explt+advs/Imperva-SecureSphere.OptMgr.txt =============================== - Advisory - =============================== Tittle: Imperva SecureSphere Operations Manager - Command Execution Post Authentication & Minor issues Risk: High Date: 27.May.2013...
Imperva SecureSphere Operations Manager Command Execution
Original: http://www.digitalsec.net/stuff/explt+advs/Imperva-SecureSphere.OptMgr.txt =============================== - Advisory - =============================== Tittle: Imperva SecureSphere Operations Manager - Command Execution Post Authentication & Minor issues Risk: High Date: 27.May.2013...
Cisco Video Surveillance Operations Manager security vulnerabilities
Directory traversal, crossite scripting...
Cisco Video Surveillance Operations Manager Multiple vulnerabilities
Exploit Title:Cisco Video Surveillance Operations Manager Multiple vulnerabilities Google Dork: intitle:"Video Surveillance Operations Manager Login" Date: 22 Feb 2013 reported to the vendor Exploit Author: Bassem | bassem.co Vendor Homepage: www.cisco.com Version: Version 6.3.2 Tested on: Versio...
Cisco Video Surveillance Operations Manager 6.3.2 - Multiple Vulnerabilities
Cisco Video Surveillance Operations Manager 6.3.2 - Multiple Vulnerabilities Exploit Title:Cisco Video Surveillance Operations Manager Multiple vulnerabilities Google Dork: intitle:"Video Surveillance Operations Manager Login" Date: 22 Feb 2013 reported to the vendor Exploit Author: Bassem |...
Cisco Video Surveillance Operations Manager 6.3.2 XSS / LFI / Bypass
Exploit Title:Cisco Video Surveillance Operations Manager Multiple vulnerabilities Google Dork: intitle:"Video Surveillance Operations Manager Login" Date: 22 Feb 2013 reported to the vendor Exploit Author: Bassem | bassem.co Vendor Homepage: www.cisco.com Version: Version 6.3.2 Tested on: Versio...
Cisco Video Surveillance Operations Manager - Multiple Vulnerabilities
Cisco Video Surveillance Operations Manager - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/58476/info Cisco Video Surveillance Operations Manager is prone to multiple security vulnerabilities, including: 1. Multiple local file-include vulnerabilities 2. A security-bypass...
Cisco Video Surveillance Operations Manager - Multiple Vulnerabilities
source: https://www.securityfocus.com/bid/58476/info Cisco Video Surveillance Operations Manager is prone to multiple security vulnerabilities, including: 1. Multiple local file-include vulnerabilities 2. A security-bypass vulnerability 3. Multiple cross-site scripting vulnerabilities An attacker...
Event ID 10378 in the Operations Manager Event Log on Collector
Challenge Operations Manager Event Log on the Collector server contains the following warning: ID 10378 Module was unable to convert WMI setting .\timestamp Event IDs 1103 and 4506 may also be observed. Cause The root cause is currently investigated by Microsoft. This article will be updated afte...
Microsoft System Center Operations Manager crossite scripting
Crossite scripting in Web console...
CVE-2013-0009
Cross-site scripting XSS vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Center Operations Manager Web Console XSS Vulnerability," a different vulnerability than CVE-2013-0010...