Lucene search
K

25 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2003-0617

Malware in sbrugna...

4.3CVSS6.4AI score0.01271EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-5551

Malware in sbrugna...

6.8CVSS6.4AI score0.01002EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2001-1457

Malware in sbrugna...

4.6CVSS6.4AI score0.00324EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2003-0615

Malware in sbrugna...

5CVSS6.4AI score0.06926EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2003-0616

Malware in sbrugna...

5CVSS6.4AI score0.01718EPSS
Exploits1References5
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

BEA Tuxedo 6/7/8 and WebLogic Enterprise 4/5 Input Validation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8931/info A vulnerability has reported to exist in BEA Tuxedo and WebLogic Enterprise due to Tuxedo administration console. The script is reported to accept various initialization arguments such as INIFILE that are not...

7.1AI score
Exploits0
Prion
Prion
added 2007/10/18 9:17 p.m.14 views

Command injection

BEA Tuxedo 8.0 before RP392 and 8.1 before RP293, and WebLogic Enterprise 5.1 before RP174, echo the password in cleartext, which allows physically proximate attackers to obtain sensitive information via the 1 cnsbind, 2 cnsunbind, or 3 cnsls commands...

6.8CVSS6.8AI score0.01002EPSS
Exploits0References4Affected Software5
NVD
NVD
added 2007/10/18 9:17 p.m.14 views

CVE-2007-5576

BEA Tuxedo 8.0 before RP392 and 8.1 before RP293, and WebLogic Enterprise 5.1 before RP174, echo the password in cleartext, which allows physically proximate attackers to obtain sensitive information via the 1 cnsbind, 2 cnsunbind, or 3 cnsls commands...

6.8CVSS6.2AI score0.01002EPSS
Exploits0References4
Cvelist
Cvelist
added 2007/10/18 9:0 p.m.20 views

CVE-2007-5576

BEA Tuxedo 8.0 before RP392 and 8.1 before RP293, and WebLogic Enterprise 5.1 before RP174, echo the password in cleartext, which allows physically proximate attackers to obtain sensitive information via the 1 cnsbind, 2 cnsunbind, or 3 cnsls commands...

6.2AI score0.01002EPSS
Exploits0References4
CVE
CVE
added 2007/10/18 9:0 p.m.50 views

CVE-2007-5576

BEA Tuxedo 8.0 prior to RP392 and 8.1 prior to RP293, and WebLogic Enterprise 5.1 prior to RP174, disclose passwords in cleartext via local commands (cnsbind, cnsunbind, cnsls), enabling physically proximate attackers to obtain sensitive information. Affected components: password handling in the ...

6.8CVSS6.3AI score0.01002EPSS
Exploits0References4Affected Software5
CVE
CVE
added 2005/05/10 4:0 a.m.58 views

CVE-2001-1477

BEA Tuxedo 7.1 Domain gateway is vulnerable: it does not perform authorization checks for imported services and qspaces on remote domains, even when an ACL exists, allowing access to remote-domain services. The issue is described across multiple records (NVD/CVE and CVE listing). No remediation d...

4.6CVSS7AI score0.00324EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2005/05/10 4:0 a.m.23 views

CVE-2001-1477

The Domain gateway in BEA Tuxedo 7.1 does not perform authorization checks for imported services and qspaces on remote domains, even when an ACL exists, which allows users to access services in a remote domain...

6.6AI score0.00324EPSS
Exploits0References2
NVD
NVD
added 2003/12/01 5:0 a.m.14 views

CVE-2003-0622

The Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to cause a denial of service hang via pathname arguments that contain MS-DOS device names such as CON and AUX...

5CVSS6.6AI score0.01718EPSS
Exploits1References4
NVD
NVD
added 2003/12/01 5:0 a.m.15 views

CVE-2003-0621

The Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to determine the existence of files outside the web root via modified paths in the INIFILE argument...

5CVSS6.7AI score0.06926EPSS
Exploits1References4
NVD
NVD
added 2003/12/01 5:0 a.m.16 views

CVE-2003-0623

Cross-site scripting XSS vulnerability in the Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to inject arbitrary web script via the INIFILE argument...

4.3CVSS5.9AI score0.01271EPSS
Exploits1References4
securityvulns
securityvulns
added 2003/11/10 12:0 a.m.30 views

[NT] BEA Tuxedo Administration CGI Multiple Argument Issues

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

6AI score
Exploits0
CVE
CVE
added 2003/11/05 5:0 a.m.53 views

CVE-2003-0622

CVE-2003-0622 affects BEA Tuxedo Admin Console (versions 8.1 and earlier). The vulnerability allows remote attackers to cause a denial of service (hang) by sending pathname arguments containing MS-DOS device names (e.g., CON, AUX). The provided documents confirm the affected product/version and t...

5CVSS7AI score0.01718EPSS
Exploits1References4Affected Software2
Cvelist
Cvelist
added 2003/11/05 5:0 a.m.22 views

CVE-2003-0622

The Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to cause a denial of service hang via pathname arguments that contain MS-DOS device names such as CON and AUX...

6.6AI score0.01718EPSS
Exploits1References4
Cvelist
Cvelist
added 2003/11/05 5:0 a.m.23 views

CVE-2003-0623

Cross-site scripting XSS vulnerability in the Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to inject arbitrary web script via the INIFILE argument...

5.9AI score0.01271EPSS
Exploits1References4
CVE
CVE
added 2003/11/05 5:0 a.m.56 views

CVE-2003-0621

CVE-2003-0621 affects the BEA Tuxedo Administration Console (8.1 and earlier). The vulnerability arises from the INIFILE argument, where modified paths can cause directory traversal to reveal files outside the web root. Impact is information disclosure; the description does not confirm exploit de...

5CVSS7.1AI score0.06926EPSS
Exploits1References4Affected Software2
Rows per page
Query Builder