33 matches found
EUVD-2002-0298
Malware in sbrugna...
EUVD-2002-0500
Malware in sbrugna...
EUVD-2002-0498
Malware in sbrugna...
EUVD-2002-0499
Malware in sbrugna...
EUVD-2001-0745
Malware in sbrugna...
Citrix Nfuse 1.6 Published Applications Information Leak Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3926/info Citrix Nfuse is an application portal server meant to provide the functionality of any application on the server via a web browser. Nfuse works in conjunction with a previously-installed webserver. If a request...
Citrix Nfuse 1.51 Webroot Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2956/info Citrix Nfuse is an application portal server meant to provide the functionality of any application on the server via a web browser. Nfuse works in conjunction with a previously-installed webserver. It has been...
Citrix NFuse 1.51/1.6 Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4372/info Citrix NFuse is an application portal server meant to provide the functionality of any application on the server via a web browser. NFuse works in conjunction with a previously-installed webserver. NFuse is said...
Citrix NFuse_Application parameter XSS
The remote Citrix NFuse contains a flaw that allows a remote cross site scripting attack. SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Citrix NFuse Launch Scripts 'NFuse_Application' Parameter XSS
The remote version of Citrix NFuse contains a flaw that allows a remote cross-site scripting attack. An attacker can exploit this issue to execute arbitrary HTML or script code in a user's browser within the security context of the affected site. %NASLMINLEVEL 70300 C Tenable Network Security, In...
Citrix NFuse Server launch.asp Arbitrary Server/Port Redirect
The remote Citrix NFuse Webserver is vulnerable to a bug wherein any anonymous user can force the server to redirect to any arbitrary IP and Port. Among other things, this flaw can allow an external attacker to use the Citrix server as a rudimentary port scanner of either another network or the...
CVE-2002-0504
Cross-site scripting vulnerability in Citrix NFuse 1.6 and earlier does not quote results from the getLastError method, which allows remote attackers to execute script in other clients via the NFuseApplication parameter to 1 launch.jsp or 2 launch.asp...
CVE-2002-0503
Directory traversal vulnerability in boilerplate.asp for Citrix NFuse 1.5 allows remote authenticated users to read arbitrary files via a .. dot dot in the NFuseTemplate parameter...
CVE-2002-0502
Citrix NFuse 1.6 may allow remote attackers to list applications without authentication by accessing the applist.asp page...
CVE-2002-0504
Cross-site scripting vulnerability in Citrix NFuse 1.6 and earlier does not quote results from the getLastError method, which allows remote attackers to execute script in other clients via the NFuseApplication parameter to 1 launch.jsp or 2 launch.asp...
CVE-2002-0503
Directory traversal vulnerability in boilerplate.asp for Citrix NFuse 1.5 allows remote authenticated users to read arbitrary files via a .. dot dot in the NFuseTemplate parameter...
CVE-2002-0503
CVE-2002-0503 corresponds to a directory traversal vulnerability in Citrix NFuse 1.5 , affecting the internal file ** boilerplate.asp**. The issue allows remote authenticated users to read arbitrary files via a double-dot sequence in the NFuse_Template parameter. The publicly available details (N...
CVE-2002-0504
CVE-2002-0504 describes a remote cross-site scripting flaw in Citrix NFuse 1.6 and earlier where results from getLastError are not quoted, allowing an attacker to inject script via the NFuse_Application parameter to launch.jsp or launch.asp. The CVSS v2 base metrics are provided (AV:N/AC:L/Au:N/C...
CVE-2002-0502
CVE-2002-0502 affects Citrix NFuse 1.6. Affected component: applist.asp handling within NFuse, enabling remote attackers to list available applications without authentication. Root cause is improper access control on the applist.asp endpoint, leading to potential information disclosure. CVSS metr...
CVE-2002-0502
Citrix NFuse 1.6 may allow remote attackers to list applications without authentication by accessing the applist.asp page...