13 matches found
EUVD-2013-3216
Malware in sbrugna...
EUVD-2015-4558
Malware in sbrugna...
CVE-2013-3279
EMC Atmos before 2.1.4 has a blank password for the PostgreSQL account, which allows remote attackers to obtain sensitive administrative information via a database-server connection...
EMC Atmos XML external entity injection Vulnerability(CVE-2 0 1 5-4 5 3 8)-vulnerability warning-the black bar safety net
Affected system: EMC Atmos = 2.3.0 Description: CVECAN ID: CVE-2 0 1 5-4 5 3 8 EMC Atmos is used to store, archive and access massive unstructured data platform. EMC Atmos 2.3.0 and earlier versions of the XML parser there is XXE injection vulnerability, allows an attacker unauthorized access to...
Xxe
The XML parser in EMC Atmos before 2.2.3.426 and 2.3.x before 2.3.1.0 allows remote authenticated users to read arbitrary files or cause a denial of service CPU and memory consumption via an external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE...
CVE-2015-4538
The XML parser in EMC Atmos before 2.2.3.426 and 2.3.x before 2.3.1.0 allows remote authenticated users to read arbitrary files or cause a denial of service CPU and memory consumption via an external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE...
CVE-2015-4538
CVE-2015-4538 affects EMC Atmos XML parser, where XML External Entity (XXE) processing in the parser prior to 2.2.3.426 and 2.3.x prior to 2.3.1.0 allows remote authenticated users to read arbitrary files or trigger a denial of service via an external entity and entity reference. Root cause is XX...
CVE-2013-3279
EMC Atmos before 2.1.4 has a blank password for the PostgreSQL account, which allows remote attackers to obtain sensitive administrative information via a database-server connection...
Design/Logic Flaw
EMC Atmos before 2.1.4 has a blank password for the PostgreSQL account, which allows remote attackers to obtain sensitive administrative information via a database-server connection...
CVE-2013-3279
EMC Atmos before 2.1.4 has a blank password for the PostgreSQL account, which allows remote attackers to obtain sensitive administrative information via a database-server connection...
CVE-2013-3279
EMC Atmos before 2.1.4 uses a default/blank PostgreSQL password, allowing remote attackers to connect to the database server and obtain sensitive administrative information. Affected: Atmos software on all supported hardware/VE prior to 2.1.4. Root cause: unauthenticated access due to no password...
ESA-2013-062: EMC Atmos Unauthenticated Database Access Vulnerability
ESA-2013-062.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-062: EMC Atmos Unauthenticated Database Access Vulnerability EMC Identifier: ESA-2013-062 CVE Identifier: CVE-2013-3279 Severity Rating: CVSS v2 Base Score: CVSS 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P Affected products: • All version...
EMC Atmos weak default installation
Default database access with no password is allowed...