Lucene search
K

4 matches found

NVD
NVD
added 2012/08/23 10:32 a.m.18 views

CVE-2012-4604

The TRITON management console in Websense Web Security before 7.6 Hotfix 24 allows remote attackers to bypass authentication and read arbitrary reports via a crafted uid field, in conjunction with a crafted userRoles field, in a cookie, as demonstrated by a request to explorerwse/favorites.exe...

4.3CVSS6.9AI score0.01341EPSS
Exploits1References1
CVE
CVE
added 2012/08/23 10:0 a.m.48 views

CVE-2012-4604

The CVE-2012-4604 issue affects the TRITON management console in Websense Web Security prior to 7.6 Hotfix 24. An authentication bypass vulnerability allows remote attackers to read arbitrary reports by tampering with cookies containing a crafted uid field and a crafted userRoles field, as demons...

4.3CVSS7.1AI score0.01341EPSS
Exploits1References1Affected Software1
exploitpack
exploitpack
added 2011/12/15 12:0 a.m.10 views

Websense 7.6 Products - favorites.exe Authentication Bypass

Websense 7.6 Products - favorites.exe Authentication Bypass source: https://www.securityfocus.com/bid/51087/info Multiple Websense products are prone to an authentication-bypass vulnerability. Remote attackers can exploit this issue to bypass the authentication mechanism and gain unauthorized...

1AI score
Exploits0
Exploit DB
Exploit DB
added 2011/12/15 12:0 a.m.19 views

Websense 7.6 Products - 'favorites.exe' Authentication Bypass

source: https://www.securityfocus.com/bid/51087/info Multiple Websense products are prone to an authentication-bypass vulnerability. Remote attackers can exploit this issue to bypass the authentication mechanism and gain unauthorized access. The following Websense products are affected: Websense...

7AI score
Exploits0
Rows per page
Query Builder