28 matches found
EUVD-2016-8866
Malware in sbrugna...
EUVD-2016-8864
Malware in sbrugna...
CVE-2016-8024
Improper neutralization of CRLF sequences in HTTP headers vulnerability in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows remote unauthenticated attacker to obtain sensitive information via the server HTTP response spoofing...
CVE-2016-8022
Authentication bypass by spoofing vulnerability in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows remote unauthenticated attacker to execute arbitrary code or cause a denial of service via a crafted authentication cookie...
CVE-2016-8021
Improper verification of cryptographic signature vulnerability in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows remote authenticated users to spoof update server and execute arbitrary code via a crafted input file...
CVE-2016-8024
Improper neutralization of CRLF sequences in HTTP headers vulnerability in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows remote unauthenticated attacker to obtain sensitive information via the server HTTP response spoofing...
CVE-2016-8022
Authentication bypass by spoofing vulnerability in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows remote unauthenticated attacker to execute arbitrary code or cause a denial of service via a crafted authentication cookie...
CVE-2016-8016
Information exposure in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows authenticated remote attackers to obtain the existence of unauthorized files on the system via a URL parameter...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows authenticated remote attackers to execute unauthorized commands via a crafted user input...
Design/Logic Flaw
Improper verification of cryptographic signature vulnerability in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows remote authenticated users to spoof update server and execute arbitrary code via a crafted input file...
Privilege escalation
Improper control of generation of code vulnerability in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows remote authenticated users to execute arbitrary code via a crafted HTTP request parameter...
Design/Logic Flaw
Improper neutralization of CRLF sequences in HTTP headers vulnerability in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows remote unauthenticated attacker to obtain sensitive information via the server HTTP response spoofing...
CVE-2016-8017
Special element injection vulnerability in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows authenticated remote attackers to read files on the webserver via a crafted user input...
CVE-2016-8016
Information exposure in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows authenticated remote attackers to obtain the existence of unauthorized files on the system via a URL parameter...
Design/Logic Flaw
Special element injection vulnerability in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows authenticated remote attackers to read files on the webserver via a crafted user input...
CVE-2016-8017
Special element injection vulnerability in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows authenticated remote attackers to read files on the webserver via a crafted user input...
CVE-2016-8024
The CVE-2016-8024 entry affects McAfee VirusScan Enterprise for Linux (VSEL) 2.0.3 and earlier. The vulnerability is HTTP Response Splitting caused by improper neutralization of CRLF sequences in HTTP headers, enabling a remote unauthenticated attacker to influence server responses and potentiall...
CVE-2016-8016
CVE-2016-8016 affects McAfee VirusScan Enterprise for Linux (VSEL) 2.0.3 and earlier. The vulnerability is an information disclosure via the web interface: an authenticated remote attacker can use a URL parameter to determine the existence of unauthorized files on the system. Connected sources al...
CVE-2016-8020
Affected software : McAfee VirusScan Enterprise for Linux (VSEL) 2.0.3 and earlier. Vulnerability : CVE-2016-8020 — improper control of generation of code, allowing an authenticated remote attacker to execute arbitrary code via a crafted HTTP request parameter. Impact : remote code execution with...
CVE-2016-8019
CVE-2016-8019 is an XSS vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 and earlier. The issue affects the web interface where user input passed through tplt parameters (notably info:7/info:5 in NailsConfig.html or MonitorHost.html) can be crafted by an unauthenticated rem...