CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1454 matches found

securityvulns•added 2012/10/10 12:0 a.m.•19 views

Endpoint Protector multiple security vulnerabilities

Multiple crossite scripting possibilities...

1.7AI score

Exploits0References1Affected Software1

exploitpack•added 2012/10/09 12:0 a.m.•28 views

Endpoint Protector 4.0.4.0 - Multiple Vulnerabilities

Endpoint Protector 4.0.4.0 - Multiple Vulnerabilities Title: ====== Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities Date: ===== 2012-10-01 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=571 VL-ID: ===== 571 Common Vulnerability Scoring System:...

0.4AI score

Exploits0

Exploit DB•added 2012/10/09 12:0 a.m.•42 views

Endpoint Protector 4.0.4.0 - Multiple Vulnerabilities

Title: ====== Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities Date: ===== 2012-10-01 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=571 VL-ID: ===== 571 Common Vulnerability Scoring System: ==================================== 5 Introduction: =============...

7.4AI score

Exploits0

Packet Storm•added 2012/10/08 12:0 a.m.•29 views

Endpoint Protector 4.0.4.0 Cross Site Scripting

7.4AI score

Exploits0

Vulnerability Lab•added 2012/09/30 12:0 a.m.•27 views

Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities

Document Title: =============== Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=571 Release Date: ============= 2012-09-30 Vulnerability Laboratory ID VL-ID: ====================================...

7.1AI score

Exploits0

Vulnerability Lab•added 2012/09/30 12:0 a.m.•10 views

Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities

0.2AI score

Exploits0

NVD•added 2012/09/18 3:48 a.m.•20 views

CVE-2012-2994

The CoSoSys Endpoint Protector 4 appliance establishes an EPProot password based entirely on the appliance serial number, which makes it easier for remote attackers to obtain access via a brute-force attack...

7.5CVSS6.7AI score0.06269EPSS

Exploits0References2

Prion•added 2012/09/18 3:48 a.m.•14 views

Code injection

7.5CVSS7.2AI score0.06269EPSS

Exploits0References2

Cvelist•added 2012/09/18 1:0 a.m.•35 views

CVE-2012-2994

6.7AI score0.06269EPSS

Exploits0References2

CVE•added 2012/09/18 1:0 a.m.•55 views

CVE-2012-2994

The CVE-2012-2994 issue affects CoSoSys Endpoint Protector 4 appliances. The EPProot root account password is generated from the appliance serial number, resulting in a default-like password eroot!00(sum)RO where sum is the sum of the 9 digits of the serial. This creates a predictable, brute-forc...

7.5CVSS6.9AI score0.06269EPSS

Exploits0References2Affected Software1

exploitpack•added 2012/09/17 12:0 a.m.•21 views

CoSoSys Endpoint Protector - Predictable Password Generation

CoSoSys Endpoint Protector - Predictable Password Generation source: https://www.securityfocus.com/bid/55570/info CoSoSys Endpoint Protector is prone to an insecure password generation vulnerability. Successfully exploiting this issue may allow an attacker to guess generated passwords and gain...

0.2AI score

Exploits0

CERT•added 2012/09/17 12:0 a.m.•31 views

CoSoSys Endpoint Protector 4 appliance contains a predictable password for root-equivalent account vulnerability

Overview CoSoSys Endpoint Protector 4 appliance contains a predictable password for root-equivalent accounts. Description According to the CoSoSys's website the Endpoint Protector 4 appliance is a DLP product used to prevent users from taking unauthorized data outside the company or bringing...

7.5CVSS6.5AI score0.06269EPSS

Exploits0References1

Exploit DB•added 2012/09/17 12:0 a.m.•39 views

CoSoSys Endpoint Protector - Predictable Password Generation

source: https://www.securityfocus.com/bid/55570/info CoSoSys Endpoint Protector is prone to an insecure password generation vulnerability. Successfully exploiting this issue may allow an attacker to guess generated passwords and gain access to affected appliances. CoSoSys Endpoint Protector 4 is...

7.4AI score

Exploits0

ThreatPost•added 2012/09/12 6:3 p.m.•24 views

Scammers Exploit Apple iPhone Release with Accessory Offers

With the release event for Apple’s newest iPhone model going on, quite literally, as I type, it comes as no surprise that scammers are exploiting the vast anticipation for the iPhone 5. In fact, so wide is the interest in Apple’s unreleased products that among the first iPhone 5 mass spam campaig...

1.1AI score

Exploits0References1

0day.today•added 2012/08/08 12:0 a.m.•23 views

Endpoint Protector v4.0.4.0 - Multiple Web Vulnerabilities

Exploit for multiple platform in category web applications Details: ======== Multiple persistent input validation vulnerabilities are detected in Endpoint Protector v4.0.4.0 Appliance Application. The bugs allow remote attackers to implement/inject malicious script code on the application side...

7.1AI score

Exploits0

NVD•added 2012/07/27 10:27 a.m.•19 views

CVE-2012-2202

Directory traversal vulnerability in javatesterinit.php in IBM Lotus Protector for Mail Security 2.1, 2.5, 2.5.1, and 2.8 and IBM ISS Proventia Network Mail Security System allows remote authenticated administrators to read arbitrary files via a .. dot dot in the template parameter...

3.5CVSS6.2AI score0.03039EPSS

Exploits0References4

Prion•added 2012/07/27 10:27 a.m.•14 views

Directory traversal

3.5CVSS6.6AI score0.03039EPSS

Exploits0References4Affected Software2

Cvelist•added 2012/07/27 10:0 a.m.•21 views

CVE-2012-2202

6.2AI score0.03039EPSS

Exploits0References4

CVE•added 2012/07/27 10:0 a.m.•42 views

CVE-2012-2202

CVE-2012-2202 is a directory-traversal vulnerability affecting IBM Lotus Protector for Mail Security (versions 2.1, 2.5, 2.5.1, 2.8) and IBM Proventia Network Mail Security System. The issue is in javatester_init.php where an unvalidated parameter (after authentication) enables an arbitrary file ...

3.5CVSS6.3AI score0.03039EPSS

Exploits0References4Affected Software1

Saint•added 2012/07/23 12:0 a.m.•37 views

HP Data Protector Express Opcode 0x320 Overflow

Added: 07/23/2012 CVE: CVE-2012-0121 BID: 52431 OSVDB: 80102 Background HP Data Protector Express is a backup and recovery solution for single machines and small networks. Problem A stack overflow vulnerability exists in dpwindtb.dll. Validation of parameters to Opcode 0x320 requests are not...

10CVSS7.1AI score0.10436EPSS

Exploits4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by