31 matches found
EUVD-2011-4953
Malware in sbrugna...
Sophos Cyberoam UTM CR25iNG 10.6.3 MR-5 Insecure Direct Object Reference Vulnerability
Exploit for jsp platform in category web applications Exploit Title: Sophos Cyberoam UTM - Privilege Escalation Date: 31/08/2016 Exploit Author: Chintan Gurjar Frogy Vendor Homepage: http://www.sophos.com/ Software Link: https://www.cyberoam.com/downloads/datasheet/CR25iNG.html Version: Cyberoam...
Sophos Cyberoam UTM CR25iNG - 10.6.3 MR-5 - Direct Object Reference
Exploit Title: Sophos Cyberoam UTM - Privilege Escalation Date: 31/08/2016 Exploit Author: Chintan Gurjar Frogy Vendor Homepage: http://www.sophos.com/ Software Link: https://www.cyberoam.com/downloads/datasheet/CR25iNG.html Version: Cyberoam CR25iNG - 10.6.3 MR-5 CVE : CVE-2016-7786 Category :...
Cyberoam UTM Multiiple Vulnerabilities
No description provided by source. SECURITY ADVISORY: cyberoam-utm-command-executaion Affected Software: Cyberoam CR50ia 10.01.0 build 678 Vulnerability: OS Command Execution Severity: High Release Date: Unreleased I. Background Cyberoam Unified Threat Management appliances offer assured security...
Cyberoam Admin Console Detection
Cyberoam UTM's web admin console is running on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid61446; scriptversion"1.7"; scriptsetattributeattribute:"pluginmodificationdate", value:"2020/09/14"; scriptnameenglish:"Cyberoam Admin Console Detection";...
CVE-2012-3372
The default configuration of Cyberoam UTM appliances uses the same Certification Authority certificate and same private key across different customers' installations, which makes it easier for man-in-the-middle attackers to spoof SSL servers by leveraging the presence of the CyberoamSSLCA...
Default configuration
DISPUTED The default configuration of Cyberoam UTM appliances uses the same Certification Authority certificate and same private key across different customers' installations, which makes it easier for man-in-the-middle attackers to spoof SSL servers by leveraging the presence of the CyberoamSSLC...
CVE-2012-3372
The default configuration of Cyberoam UTM appliances uses the same Certification Authority certificate and same private key across different customers' installations, which makes it easier for man-in-the-middle attackers to spoof SSL servers by leveraging the presence of the CyberoamSSLCA...
Cyberoam UTM v10.01.2 build 059 - File Include Vulnerabilities
Title: ====== Cyberoam UTM v10.01.2 build 059 - File Include Vulnerabilities Date: ===== 2012-04-15 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=498 VL-ID: ===== 498 Introduction: ============= Cyberoam Unified Threat Management appliances offer comprehensive securit...
Cyberoam Unified Threat Management security vulnerabilities
Command execution, information leakage...
Cyberoam UTM 10.01.2 Build 059 Local File Inclusion
Title: ====== Cyberoam UTM v10.01.2 build 059 - File Include Vulnerabilities Date: ===== 2012-04-15 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=498 VL-ID: ===== 498 Introduction: ============= Cyberoam Unified Threat Management appliances offer comprehensive securit...
Cyberoam UTM v10.01.2 b59 - File Include Vulnerabilities
Document Title: =============== Cyberoam UTM v10.01.2 b59 - File Include Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=498 Release Date: ============= 2012-04-14 Vulnerability Laboratory ID VL-ID: ==================================== 49...
Cyberoam UTM v10.01.2 b59 - File Include Vulnerabilities
Document Title: =============== Cyberoam UTM v10.01.2 b59 - File Include Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=498 Release Date: ============= 2012-04-14 Vulnerability Laboratory ID VL-ID: ==================================== 49...
Cyberoam Unified Threat Management: Insecure Password Handling
Hi, Please find below the details of a vulnerability I discovered in Cyberoam UTM device. The Vendor was notified, however I did not receive any response from Vendor despite repeated email reminders. SECURITY ADVISORY: cyberoam-utm-insecure-password-handling Affected Software: Cyberoam CR50ia...
Cyberoam UTM - Multiple Vulnerabilities
Cyberoam UTM - Multiple Vulnerabilities SECURITY ADVISORY: cyberoam-utm-command-executaion Affected Software: Cyberoam CR50ia 10.01.0 build 678 Vulnerability: OS Command Execution Severity: High Release Date: Unreleased I. Background "Cyberoam Unified Threat Management appliances offer assured...
Cyberoam UTM - Multiple Vulnerabilities
SECURITY ADVISORY: cyberoam-utm-command-executaion Affected Software: Cyberoam CR50ia 10.01.0 build 678 Vulnerability: OS Command Execution Severity: High Release Date: Unreleased I. Background "Cyberoam Unified Threat Management appliances offer assured security, connectivity and productivity to...
Cyberoam UTM Multiiple Vulnerabilities
Exploit for hardware platform in category web applications Affected Software: Cyberoam CR50ia 10.01.0 build 678 Vulnerability: OS Command Execution Severity: High Release Date: Unreleased I. Background "Cyberoam Unified Threat Management appliances offer assured security, connectivity and...
Cyberoam UTM Credential Disclosure
SECURITY ADVISORY: cyberoam-utm-insecure-password-handling Affected Software: Cyberoam CR50ia 10.01.0 build 678 Vulnerability: Insecure Password Handling Severity: High Release Date: Unreleased I. Background "Cyberoam Unified Threat Management appliances offer assured security, connectivity and...
Cyberoam UTM Command Execution
SECURITY ADVISORY: cyberoam-utm-command-executaion Affected Software: Cyberoam CR50ia 10.01.0 build 678 Vulnerability: OS Command Execution Severity: High Release Date: Unreleased I. Background "Cyberoam Unified Threat Management appliances offer assured security, connectivity and productivity to...
Cyberoam Central Console 2.00.2 - Remote File Inclusion
Title: ====== Cyberoam Central Console v2.00.2 - File Include Vulnerability Date: ===== 2012-02-08 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=405 VL-ID: ===== 405 Introduction: ============= Cyberoam Central Console CCC appliances offer the flexibility of hardware...