CVE-2007-3985

Directory traversal vulnerability in file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer 4.6.3 allows remote attackers to download arbitrary files via a .. dot dot in the name parameter...

CVE-2007-3986

file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer 4.6.3 allows remote attackers to bypass authentication via a name parameter that specifies the eventcache directory and a non-GIF file, which causes the $dontvalidate variable to be set to true. NOTE: a separate traversal...

CVE-2007-3985

Directory traversal vulnerability in file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer 4.6.3 allows remote attackers to download arbitrary files via a .. dot dot in the name parameter...

CVE-2007-3985

The CVE-2007-3985 issue affects Secure Computing SecurityReporter (aka Network Security Analyzer) version 4.6.3, where the file.cgi script fails to sanitize the name parameter. This enables a directory traversal attack (".." in the name) allowing remote attackers to download arbitrary files from ...

CVE-2007-3986

file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer 4.6.3 allows remote attackers to bypass authentication via a name parameter that specifies the eventcache directory and a non-GIF file, which causes the $dontvalidate variable to be set to true. NOTE: a separate traversal...

CVE-2007-3986

CVE-2007-3986 affects Secure Computing SecurityReporter (aka Network Security Analyzer) 4.6.3. The issue is in the file.cgi component where the name parameter can specify an eventcache directory and a non-GIF file, bypassing authentication by setting the $dontvalidate variable. A separate travers...

SecurityReporter目录遍历及绕过认证漏洞

BUGTRAQ ID: 25027 SecurityReporter是Sidewinder安全设备的安全事件分析和报表解决方案。 SecurityReporter的file.cgi文件允许用户绕过认证： 8 $name = $field'name'; 9 10 for gif images we dont care about authorization so just serve it without 11 bothering the reporting engine again. See bug: 3676 for details. 12 $dontvalidate = "false...

securityreporter-traverse.txt

SECURITYREPORTER - AUTHENTICATION BYPASS AND DIRECTORY TRAVERSAL VULNERABILITY Product: SecurityReporter Version: 4.6.3 Build Date: 04/20/2007 Platform: Win32 Vendor: Secure Computing www.securecomputing.com Product Description ------------------- "SecurityReporter is a security event analysis an...

[Full-disclosure] Secure Computing - Security Reporter Auth Bypass and Directory Traversal Vulnerability

SECURITYREPORTER - AUTHENTICATION BYPASS AND DIRECTORY TRAVERSAL VULNERABILITY Product: SecurityReporter Version: 4.6.3 Build Date: 04/20/2007 Platform: Win32 Vendor: Secure Computing www.securecomputing.com Product Description ------------------- "SecurityReporter is a security event analysis an...

Secure Computing Security Reporter multiple security vulnerabilities

Authentication bypass and directory traversal...

CVE-2007-3098

The SNMPc Server crserv.exe process in Castle Rock Computing SNMPc before 7.0.19 allows remote attackers to cause a denial of service crash via a crafted packet to port 165/TCP...

CVE-2007-3098

The SNMPc Server crserv.exe process in Castle Rock Computing SNMPc before 7.0.19 allows remote attackers to cause a denial of service crash via a crafted packet to port 165/TCP...

CVE-2007-3098

The SNMPc Server (crserv.exe) in Castle Rock Computing SNMPc prior to version 7.0.19 is vulnerable to a remote denial-of-service via a crafted packet sent to TCP port 165. The root cause is a crash triggered by specially formed network traffic to the SNMPc service, which can allow an unauthentica...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the administration console in Secure Computing CipherTrust IronMail 6.1.1 allow remote attackers to inject arbitrary web script or HTML via the 1 network, 2 defRouterIp, 3 hostName, 4 domainName, 5 ipAddress, 6 defaultRouter, 7 dns1, or 8 dns2...

CVE-2007-1723

CVE-2007-1723 describes multiple cross-site scripting (XSS) vulnerabilities in the administration console of Secure Computing CipherTrust IronMail 6.1.1. The flaws allow remote attackers to inject arbitrary script/HTML through a large set of parameters across several admin pages (e.g., admin/syst...

Linux Omnikey Cardman 4040 driver Local Buffer Overflow Exploit PoC

No description provided by source. / Linux Omnikey Cardman 4040 driver buffer overflow CVE-2007-0005 Copyright C Daniel Roethlisberger [email protected] Compass Security Network Computing AG, Rapperswil, Switzerland. All rights reserved. http://www.csnc.ch/ / includesys/stat.h...

Linux Omnikey Cardman 4040 driver Local Buffer Overflow Exploit PoC

Exploit for linux platform in category dos / poc =================================================================== Linux Omnikey Cardman 4040 driver Local Buffer Overflow Exploit PoC =================================================================== / Linux Omnikey Cardman 4040 driver buffer...

CVE-2006-5303

Secure Computing SafeWord RemoteAccess 2.1 allows local users to obtain the UserCenter webportal password, database encryption keys, and signing keys by reading 1 base-64 encoded data in SERVERS\Web\Tomcat\usercenter\WEB-INF\login.conf and 2 plaintext data in SERVERS\Shared\signers.cfg. NOTE: the...

CVE-2006-5303

CVE-2006-5303 affects Secure Computing SafeWord RemoteAccess 2.1. The vulnerability allows local users to obtain sensitive credentials by reading (1) base-64 data in SERVERS\Web\Tomcat\usercenter\WEB-INF\login.conf and (2) plaintext data in SERVERS\Shared\signers.cfg. The provenance of the inform...

CVE-2006-5303

Secure Computing SafeWord RemoteAccess 2.1 allows local users to obtain the UserCenter webportal password, database encryption keys, and signing keys by reading 1 base-64 encoded data in SERVERS\Web\Tomcat\usercenter\WEB-INF\login.conf and 2 plaintext data in SERVERS\Shared\signers.cfg. NOTE: the...