96 matches found
VMware Security Updates for vCenter Server (VMSA-2014-0012)
The VMware vCenter Server installed on the remote host is version 5.0 prior to Update 3c, 5.1 prior to Update 3, or 5.5 prior to Update 2. It is, therefore, affected by multiple vulnerabilities in third party libraries : - Due to improper certificate validation when connecting to a CIM server on ...
CVE-2014-9166
Adobe ColdFusion 10 before Update 15 and 11 before Update 3 allows attackers to cause a denial of service resource consumption via unspecified vectors...
CVE-2014-3797
CVE-2014-3797 is an XSS vulnerability in VMware vCenter Server Appliance (vCSA) 5.1 prior to Update 3, allowing remote attackers to inject arbitrary script/HTML via unspecified vectors. Connected sources confirm the issue and that remediation is available: vCSA 5.1 Update 3 (and related patches i...
Design/Logic Flaw
VMware vSphere Client 4.0, 4.1, 5.0 before Update 3, and 5.1 before Update 2 does not properly validate updates to Client files, which allows remote attackers to trigger the downloading and execution of an arbitrary program via unspecified vectors...
Synology DiskStation Manager < 4.3-3810 Update 3 Multiple FileBrowser Component Directory Traversal Vulnerabilities
According to its version number, the Synology DiskStation Manager installed on the remote host is 4.3-x equal or prior to 4.3-3810. It is, therefore, affected by multiple directory traversal vulnerabilities in the FileBrowser component. The issue exists due to improper validation of values...
CVE-2013-2933
Unspecified vulnerability in Citrix CloudPortal Services Manager aka Cortex 10.0 before Cumulative Update 3 has unknown impact and attack vectors, a different vulnerability than other CVEs listed in CTX137162...
CVE-2013-2939
Unspecified vulnerability in Citrix CloudPortal Services Manager aka Cortex 10.0 before Cumulative Update 3 has unknown impact and attack vectors, a different vulnerability than other CVEs listed in CTX137162...
Design/Logic Flaw
Unspecified vulnerability in Citrix CloudPortal Services Manager aka Cortex 10.0 before Cumulative Update 3 has unknown impact and attack vectors, related to debugging messages, a different vulnerability than other CVEs listed in CTX137162...
Design/Logic Flaw
Unspecified vulnerability in Citrix CloudPortal Services Manager aka Cortex 10.0 before Cumulative Update 3 has unknown impact and attack vectors, a different vulnerability than other CVEs listed in CTX137162...
Design/Logic Flaw
Unspecified vulnerability in Citrix CloudPortal Services Manager aka Cortex 10.0 before Cumulative Update 3 has unknown impact and attack vectors, a different vulnerability than other CVEs listed in CTX137162...
CVE-2013-2940
Unspecified vulnerability in Citrix CloudPortal Services Manager aka Cortex 10.0 before Cumulative Update 3 has unknown impact and attack vectors, a different vulnerability than other CVEs listed in CTX137162...
CVE-2013-2937
Unspecified vulnerability in Citrix CloudPortal Services Manager aka Cortex 10.0 before Cumulative Update 3 has unknown impact and attack vectors, related to debugging messages, a different vulnerability than other CVEs listed in CTX137162...
CVE-2013-2940
Technical details (affected product/component/version, root cause, exploit information) for CVE-2013-2940 are not publicly available in the provided connected documents. Monitor for updates.
Oracle Java SE JDK Multiple Vulnerabilities - February 2012 (Windows - 02)
This host is installed with Oracle Java SE JDK and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboraclejavasejdkmultvulnfeb12win02.nasl 7699 2017-11-08 12:10:34Z santu $ Oracle Java SE JDK Multiple Vulnerabilities - February 2012 Windows - 02 Authors: Arun Kallavi...
Oracle Java SE JDK Multiple Vulnerabilities - February 2012 (Windows - 01)
This host is installed with Oracle Java SE JDK and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboraclejavasejdkmultvulnfeb12win01.nasl 7699 2017-11-08 12:10:34Z santu $ Oracle Java SE JDK Multiple Vulnerabilities - February 2012 Windows - 01 Authors: Arun Kallavi...
Oracle Java SE JRE Multiple Vulnerabilities - February 2012 (Windows - 01)
This host is installed with Oracle Java SE JRE and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboraclejavasemultvulnfeb12win01.nasl 7699 2017-11-08 12:10:34Z santu $ Oracle Java SE JRE Multiple Vulnerabilities - February 2012 Windows - 01 Authors: Sooraj KS Copyright:...
CVE-2011-1788
vCenter Server in VMware vCenter 4.0 before Update 3 and 4.1 before Update 1 allows local users to discover the SOAP session ID via unspecified vectors...
Code injection
vCenter Server in VMware vCenter 4.0 before Update 3 and 4.1 before Update 1 allows local users to discover the SOAP session ID via unspecified vectors...
CVE-2011-1788
vCenter Server in VMware vCenter 4.0 before Update 3 and 4.1 before Update 1 allows local users to discover the SOAP session ID via unspecified vectors...
CVE-2011-1788
CVE-2011-1788 is discussed in VMware advisory VMSA-2011-0008 and related Nessus plugin; it covers SOAP session ID disclosure in vCenter Server as part of multiple VMware vulnerabilities. Connected documents also describe: (1) CVE-2011-0426 (directory traversal) affecting vCenter Server, VirtualCe...