3 matches found
Threat Outbreak Alert: Fake Statement Notification Email Messages on May 18, 2012
Low Alert ID: 25900 First Published: 2012 May 10 16:25 GMT Last Updated: 2012 May 18 17:02 GMT Version: 3 Summary Cisco Security has detected significant activity related to Portuguese-language spam e-mail messages that claim to contain the recipient's account statement details for review. The te...
SAP SAPDB (WEB DBM) XSS Vulnerability
Application: SAPDB Versions Affected: Last Vendor URL: Bugs: XSS Exploits: YES Reported: 20.11.2008 Vendor response: 20.11.2008 Date of Public Advisory: 31.03.2009 Description SAP MaxDB Web Database engine which listens port 9999 has a Linked XSS security vulnerability. Business Risk An attacker...
Cisco CallManager Web Interface Input Validation Bypass Vulnerability
Cisco CallManager versions 4.31 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to bypass security restrictions and conduct cross-site scripting attacks. This vulnerability exists due to insufficient sanitization of user-supplied input to the CallManager web...