297 matches found
CVE-2007-6483
CVE-2007-6483 covers a directory traversal flaw affecting SafeNet Sentinel Protection Server (7.0.0–7.4.0) and Sentinel Keys Server (1.0.3–1.0.4). The issue allows remote attackers to read arbitrary files via a .. in the URI/query, potentially impacting ICONICS GENESIS32/64 deployments that use S...
CVE-2007-6483
Directory traversal vulnerability in SafeNet Sentinel Protection Server 7.0.0 through 7.4.0 and possibly earlier versions, and Sentinel Keys Server 1.0.3 and possibly earlier versions, allows remote attackers to read arbitrary files via a .. dot dot in the query string...
Sentinel Protection Server/Keys Server远程目录遍历漏洞
BUGTRAQ ID: 26583 Sentinel Protection Server和Sentinel Keys Server都是SafeNet公司推出的网络加密解决方案。 Sentinel Protection Server和Sentinel Keys Server的Web Server实现上存在输入验证漏洞,远程攻击者可能利用此漏洞执行目录遍历攻击。 Sentinel Protection Server和Sentinel Keys Server分别在6002和7002端口上运行Web...
sentineldetails-traverse.txt
SUMMARY ======= SafeNet Inc.'s Sentinel Protection Server and Sentinel Keys Server products include web servers which are vulnerable to directory traversal attacks. A remote attacker could exploit these vulnerabilities to read arbitrary files with the permissions of the web server, typically...
2007-06 Sentinel Protection Server Directory Traversal
Title ----- Sentinel Protection Server Directory Traversal Severity -------- High Date Discovered --------------- October 10th, 2007 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: Corey Lebleu Vulnerability Description ------------------------- A classic...
Directory Traversal in SafeNet Sentinel Protection Server and Keys Server
SUMMARY ======= SafeNet Inc.'s Sentinel Protection Server and Sentinel Keys Server products include web servers which are vulnerable to directory traversal attacks. A remote attacker could exploit these vulnerabilities to read arbitrary files with the permissions of the web server, typically...
Safenet Sentinel Protection Server directory traversal
Web interface directory traversal...
SafeNet Sentinel Protection Server 7.xKeys Server 1.0.3 - Directory Traversal
SafeNet Sentinel Protection Server 7.xKeys Server 1.0.3 - Directory Traversal source: https://www.securityfocus.com/bid/26583/info Sentinel Protection Server and Keys Server are prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data...
SafeNet Sentinel Protection Server 7.x/Keys Server 1.0.3 - Directory Traversal
source: https://www.securityfocus.com/bid/26583/info Sentinel Protection Server and Keys Server are prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue may allow an attacker to access sensitive information that cou...
SafeNET High Assurance Remote/SoftRemote IPSecDrv.SYS远程拒绝服务漏洞
SafeNet HighAssurance Remote是一款标准VPN软件产品。 SafeNet HighAssurance Remote不正确处理畸形报文数据,远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 发送畸形的IPv6报文,会在搜索option头字段0x1000BEB0时进入循环而造成IPSecDrv.sys错误发生崩溃。 SafeNet SafeNet HighAssurance SoftRemote 1.4 SafeNet SafeNet HighAssurance Remote 1.4 目前没有解决方案提供: http://www.safenet-inc.com/...
Design/Logic Flaw
IPSecDrv.sys 10.4.0.12 in SafeNET High Assurance Remote 1.4.0 Build 12, and SoftRemote, allows remote attackers to cause a denial of service infinite loop and system hang via an invalid packet with certain bytes in an option header, possibly related to the IPv6 support for IPSec...
CVE-2007-3157
IPSecDrv.sys 10.4.0.12 in SafeNET High Assurance Remote 1.4.0 Build 12, and SoftRemote, allows remote attackers to cause a denial of service infinite loop and system hang via an invalid packet with certain bytes in an option header, possibly related to the IPv6 support for IPSec...
CVE-2007-3157
CVE-2007-3157 affects IPSecDrv.sys version 10.4.0.12 in SafeNET High Assurance Remote 1.4.0 Build 12 and SoftRemote. The issue is a denial-of-service condition caused by processing an invalid IPv6-related option header in an IPsec packet, leading to an infinite loop and system hang. The exact vul...
CVE-2007-3157
IPSecDrv.sys 10.4.0.12 in SafeNET High Assurance Remote 1.4.0 Build 12, and SoftRemote, allows remote attackers to cause a denial of service infinite loop and system hang via an invalid packet with certain bytes in an option header, possibly related to the IPv6 support for IPSec...
[Full-disclosure] SafeNET High Assurance Remote/SoftRemote (IPSecDrv.sys) remote DoS
Attached is POC for a remote DoS in IPSecDrv.sys shipped with SafeNET High Assurance Remote and SoftRemote. The version tested is 10.4.0.12. The bug itself is due to SafeNET making a complete hash of IPv6 support for IPSec. The result of the code is a complete DoS of the machine in Kernel mode...
SafeNET High Assurance Remote / SoftRemote DoS
Infinite loop on IPv6 parsing...
SafeNET High Assurance Remote 1.4.0 (IPSecDrv.sys) Remote DoS
No description provided by source. / safenet-dos.c SafeNet HighAssurance Remote 1.4.0 Ring0 DoS win32 by John Anderson [email protected] mu-b [email protected] - Mar 2006 - June 2007 - Tested on: SafeNet HighAssurance Remote 1.4.0 Build 12 win32 Kernel level Ring0 DoS in IPv6 support of IPSecDrv.sys...
SafeNET High Assurance Remote 1.4.0 (IPSecDrv.sys) Remote DoS
No description provided by source. / safenet-dos.c SafeNet HighAssurance Remote 1.4.0 Ring0 DoS win32 by John Anderson [email protected] mu-b [email protected] - Mar 2006 - June 2007 - Tested on: SafeNet HighAssurance Remote 1.4.0 Build 12 win32 Kernel level Ring0 DoS in IPv6 support of IPSecDrv.sys...
SafeNET High Assurance Remote 1.4.0 (IPSecDrv.sys) Remote DoS
Exploit for unknown platform in category dos / poc ============================================================= SafeNET High Assurance Remote 1.4.0 IPSecDrv.sys Remote DoS ============================================================= / safenet-dos.c SafeNet HighAssurance Remote 1.4.0 Ring0 DoS...
SafeNet High Assurance Remote 1.4.0 - IPSecDrv.sys Remote Denial of Service
SafeNet High Assurance Remote 1.4.0 - IPSecDrv.sys Remote Denial of Service / safenet-dos.c SafeNet HighAssurance Remote 1.4.0 Ring0 DoS win32 by John Anderson mu-b - Mar 2006 - June 2007 - Tested on: SafeNet HighAssurance Remote 1.4.0 Build 12 win32 Kernel level Ring0 DoS in IPv6 support of...