15 matches found
CVE-2019-12753
An information disclosure vulnerability in Symantec Reporter web UI 10.3 prior to 10.3.2.5 allows a malicious authenticated administrator user to obtain passwords for external SMTP, FTP, FTPS, LDAP, and Cloud Log Download servers that they might not otherwise be authorized to access. The maliciou...
EUVD-2019-4339
Malware in sbrugna...
EUVD-2018-4215
Malware in sbrugna...
EUVD-2017-6983
Malware in sbrugna...
CVE-2019-12753
An information disclosure vulnerability in Symantec Reporter web UI 10.3 prior to 10.3.2.5 allows a malicious authenticated administrator user to obtain passwords for external SMTP, FTP, FTPS, LDAP, and Cloud Log Download servers that they might not otherwise be authorized to access. The maliciou...
CVE-2019-12753
An information disclosure vulnerability in Symantec Reporter web UI 10.3 prior to 10.3.2.5 allows a malicious authenticated administrator user to obtain passwords for external SMTP, FTP, FTPS, LDAP, and Cloud Log Download servers that they might not otherwise be authorized to access. The maliciou...
Information Disclosure Vulnerability in Reporter
SUMMARY The Symantec Reporter web UI is susceptible to an information disclosure vulnerability. A malicious authenticated Reporter administrator user can obtain passwords for external servers that they might not otherwise be authorized to access. The malicious user can also obtain the passwords o...
Symantec (Blue Coat) Reporter Denial of Service vulnerability (SYMSA1280)
According to its self-reported version number, the Symantec formerly Blue Coat Reporter installation running on the remote host is prior to 10.3.1.1. It is, therefore, is affected by a denial of service vulnerability. The SSL/TLS implementation on the remote host allows clients to renegotiate...
Symantec Reporter Web Interface Detection
The web interface for Symantec Reporter was detected on the remote host. Binary data symantecreporterwebdetection.nbin...
CVE-2018-12237
The Symantec Reporter CLI 10.1 prior to 10.1.5.6 and 10.2 prior to 10.2.1.8 is susceptible to an OS command injection vulnerability. An authenticated malicious administrator with Enable mode access can execute arbitrary OS commands with elevated system privileges...
CVE-2018-12237
The Symantec Reporter CLI 10.1 prior to 10.1.5.6 and 10.2 prior to 10.2.1.8 is susceptible to an OS command injection vulnerability. An authenticated malicious administrator with Enable mode access can execute arbitrary OS commands with elevated system privileges...
Symantec Reporter CLI OS Command Injection Vulnerability
Symantec Reporter CLI is a command line tool from Symantec USA. The tool is primarily used to manage and change network settings. An operating system command injection vulnerability exists in Symantec Reporter CLI, which can be exploited by a remote attacker to execute arbitrary operating system...
Symantec Reporter Authentication Bypass Vulnerability
Symantec Reporter is the United States Symantec Symantec company's set of logs for the collection, storage and viewing capabilities of the software. A security vulnerability exists in Symantec Reporter that stems from the program's failure to limit the number of authentication requests. A remote...
CVE-2017-15531
Symantec Reporter 9.5 prior to 9.5.4.1 and 10.1 prior to 10.1.5.5 does not restrict excessive authentication attempts for management interface users. A remote attacker can use brute force search to guess a user password and gain access to Reporter...
SA158: Improper Restriction of Excessive Authentication Attempts in Reporter
SUMMARY Symantec Reporter does not restrict excessive authentication attempts for management interface users. A remote attacker can use brute force search to guess a user password and gain access to Reporter. AFFECTED PRODUCTS Reporter --- CVE | Affected Versions | Remediation CVE-2017-15531 | 10...