Invalid Bind NAK Messages

DCE/RPC stands for Distributed Computing Environment / Remote Procedure Calls. It is a Remote Procedure Call system that allows software to work across multiple computers, as if it were all working on the same computer. This system allows programmers to write distributed software without having t...

CVE-2007-4043

file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer before 4.6.3 allows remote attackers to bypass authentication via a name parameter ending with a "%00.gif" sequence. NOTE: a separate traversal vulnerability could be leveraged to download arbitrary files...

CVE-2007-4043

file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer before 4.6.3 allows remote attackers to bypass authentication via a name parameter ending with a "%00.gif" sequence. NOTE: a separate traversal vulnerability could be leveraged to download arbitrary files...

CVE-2007-4043

CVE-2007-4043 affects Secure Computing SecurityReporter (aka Network Security Analyzer) prior to 4.6.3. A vulnerability allows remote attackers to bypass authentication via a name parameter ending with a “%00.gif” sequence, and a separate traversal vulnerability could be leveraged to download arb...

Authentication flaw

file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer 4.6.3 allows remote attackers to bypass authentication via a name parameter that specifies the eventcache directory and a non-GIF file, which causes the $dontvalidate variable to be set to true. NOTE: a separate traversal...

CVE-2007-3985

Directory traversal vulnerability in file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer 4.6.3 allows remote attackers to download arbitrary files via a .. dot dot in the name parameter...

CVE-2007-3986

file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer 4.6.3 allows remote attackers to bypass authentication via a name parameter that specifies the eventcache directory and a non-GIF file, which causes the $dontvalidate variable to be set to true. NOTE: a separate traversal...

CVE-2007-3985

Directory traversal vulnerability in file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer 4.6.3 allows remote attackers to download arbitrary files via a .. dot dot in the name parameter...

CVE-2007-3985

The CVE-2007-3985 issue affects Secure Computing SecurityReporter (aka Network Security Analyzer) version 4.6.3, where the file.cgi script fails to sanitize the name parameter. This enables a directory traversal attack (".." in the name) allowing remote attackers to download arbitrary files from ...

CVE-2007-3986

CVE-2007-3986 affects Secure Computing SecurityReporter (aka Network Security Analyzer) 4.6.3. The issue is in the file.cgi component where the name parameter can specify an eventcache directory and a non-GIF file, bypassing authentication by setting the $dontvalidate variable. A separate travers...

CVE-2007-3986

file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer 4.6.3 allows remote attackers to bypass authentication via a name parameter that specifies the eventcache directory and a non-GIF file, which causes the $dontvalidate variable to be set to true. NOTE: a separate traversal...

SecurityReporter目录遍历及绕过认证漏洞

BUGTRAQ ID: 25027 SecurityReporter是Sidewinder安全设备的安全事件分析和报表解决方案。 SecurityReporter的file.cgi文件允许用户绕过认证： 8 $name = $field'name'; 9 10 for gif images we dont care about authorization so just serve it without 11 bothering the reporting engine again. See bug: 3676 for details. 12 $dontvalidate = "false...

securityreporter-traverse.txt

SECURITYREPORTER - AUTHENTICATION BYPASS AND DIRECTORY TRAVERSAL VULNERABILITY Product: SecurityReporter Version: 4.6.3 Build Date: 04/20/2007 Platform: Win32 Vendor: Secure Computing www.securecomputing.com Product Description ------------------- "SecurityReporter is a security event analysis an...

[Full-disclosure] Secure Computing - Security Reporter Auth Bypass and Directory Traversal Vulnerability

SECURITYREPORTER - AUTHENTICATION BYPASS AND DIRECTORY TRAVERSAL VULNERABILITY Product: SecurityReporter Version: 4.6.3 Build Date: 04/20/2007 Platform: Win32 Vendor: Secure Computing www.securecomputing.com Product Description ------------------- "SecurityReporter is a security event analysis an...

Secure Computing Security Reporter multiple security vulnerabilities

Authentication bypass and directory traversal...

CVE-2007-3098

The SNMPc Server crserv.exe process in Castle Rock Computing SNMPc before 7.0.19 allows remote attackers to cause a denial of service crash via a crafted packet to port 165/TCP...

CVE-2007-3098

The SNMPc Server crserv.exe process in Castle Rock Computing SNMPc before 7.0.19 allows remote attackers to cause a denial of service crash via a crafted packet to port 165/TCP...

CVE-2007-3098

The SNMPc Server (crserv.exe) in Castle Rock Computing SNMPc prior to version 7.0.19 is vulnerable to a remote denial-of-service via a crafted packet sent to TCP port 165. The root cause is a crash triggered by specially formed network traffic to the SNMPc service, which can allow an unauthentica...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the administration console in Secure Computing CipherTrust IronMail 6.1.1 allow remote attackers to inject arbitrary web script or HTML via the 1 network, 2 defRouterIp, 3 hostName, 4 domainName, 5 ipAddress, 6 defaultRouter, 7 dns1, or 8 dns2...

CVE-2007-1723

CVE-2007-1723 describes multiple cross-site scripting (XSS) vulnerabilities in the administration console of Secure Computing CipherTrust IronMail 6.1.1. The flaws allow remote attackers to inject arbitrary script/HTML through a large set of parameters across several admin pages (e.g., admin/syst...