24 matches found
EUVD-2015-0557
Malware in sbrugna...
EUVD-2015-6788
Malware in sbrugna...
EUVD-2018-3123
Malware in sbrugna...
EUVD-2015-0537
Malware in sbrugna...
EUVD-2015-0538
Malware in sbrugna...
EMC Secure Remote Services Detection
This script performs SSH based detection of EMC Secure Remote Services SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
EMC Secure Remote Services Webinterface Detection
This script performs HTTP based detection of EMC Secure Remote Services Webinterface SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if...
Directory traversal
Directory traversal vulnerability in the API in EMC Secure Remote Services Virtual Edition 3.x before 3.10 allows remote authenticated users to read log files via a crafted parameter...
CVE-2015-6852
CVE-2015-6852 affects EMC Secure Remote Services Virtual Edition 3.x prior to 3.10. The API is vulnerable to a directory traversal issue that allows remote authenticated users to read log files via a crafted parameter. The vulnerability is described in multiple sources (NVD/CNVD) with a CVSS v3 b...
EMC Secure Remote Services Virtual Edition multiple security vulnerabilities
Code execution, SQL injection, buffer overflow...
Insufficient certificate validation in EMC Secure Remote Services Virtual Edition
------------------------------------------------------------------------ Insufficient certificate validation in EMC Secure Remote Services Virtual Edition ------------------------------------------------------------------------ Han Sahin, November 2014...
CVE-2015-0543
EMC Secure Remote Services Virtual Edition ESRS VE 3.x before 3.06 does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Design/Logic Flaw
EMC Secure Remote Services Virtual Edition ESRS VE 3.x before 3.06 does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Design/Logic Flaw
EMC Secure Remote Services Virtual Edition ESRS VE 3.x before 3.06 does not properly generate random values for session cookies, which makes it easier for remote attackers to hijack sessions by predicting a value...
CVE-2015-0543
EMC Secure Remote Services Virtual Edition ESRS VE 3.x before 3.06 does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
ESA-2015-097: EMC Secure Remote Services (ESRS) Virtual Edition (VE) Multiple Security Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-097: EMC Secure Remote Services ESRS Virtual Edition VE Multiple Security Vulnerabilities CVE Identifier: CVE-2015-0543, CVE-2015-0544 Severity Rating: CVSS v2 Base Score: See below for individual scores for each CVE Affected products: • ESRS...
EMC Secure Remote Services Virtual Edition Provisioning component is affected by SQL injection
------------------------------------------------------------------------ EMC Secure Remote Services Virtual Edition Provisioning component is affected by SQL injection ------------------------------------------------------------------------ Han Sahin, November 2014...
Command injection vulnerability in EMC Secure Remote Services Virtual Edition
------------------------------------------------------------------------ Command injection vulnerability in EMC Secure Remote Services Virtual Edition ------------------------------------------------------------------------ Han Sahin, November 2014...
EMC Secure Remote Services Virtual Edition SQL Injection Vulnerability
An SQL injection vulnerability was found in EMC Secure Remote Services Virtual Edition ESRS VE that allows an attacker to retrieve arbitrary data from the application, interfere with its logic, or execute commands on the database server itself...
EMC Secure Remote Services Virtual Edition Command Injection
------------------------------------------------------------------------ Command injection vulnerability in EMC Secure Remote Services Virtual Edition ------------------------------------------------------------------------ Han Sahin, November 2014...