10 matches found
Solarwinds Firewall Security Manager Detection
Detection of Solarwinds Firewall Security Manager The script sends a connection request to the server and attempts to detect Solarwinds Firewall Security Manager FSM. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C...
SolarWinds Firewall Security Manager 6.6.5 - Client Session Handling (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "Solarwinds Firewall Security Manager 6.6.5 Client Session Handling Vulnerability", 'Description' = %q This module exploits multiple...
SolarWinds Firewall Security Manager userlogin.jsp Policy Bypass (CVE-2015-2284)
A policy bypass vulnerability exists in SolarWinds Firewall Security Manager. The vulnerability is due to a design weakness in the userlogin.jsp page which sets the "username" session value to a user supplied value prior to authentication. A remote unauthenticated attacker could exploit this...
CVE-2015-2284
userlogin.jsp in SolarWinds Firewall Security Manager FSM before 6.6.5 HotFix1 allows remote attackers to gain privileges and execute arbitrary code via unspecified vectors, related to client session handling...
Session fixation
userlogin.jsp in SolarWinds Firewall Security Manager FSM before 6.6.5 HotFix1 allows remote attackers to gain privileges and execute arbitrary code via unspecified vectors, related to client session handling...
CVE-2015-2284
userlogin.jsp in SolarWinds Firewall Security Manager FSM before 6.6.5 HotFix1 allows remote attackers to gain privileges and execute arbitrary code via unspecified vectors, related to client session handling...
CVE-2015-2284
CVE-2015-2284 affects SolarWinds Firewall Security Manager (FSM) prior to version 6.6.5 HotFix1, with a vulnerability in userlogin.jsp that enables an unauthenticated remote attacker to gain privileges and execute arbitrary code via a client session handling flaw. The linked sources indicate mult...
SolarWinds Firewall Security Manager Arbitrary Code Execution Vulnerability
SolarWinds Firewall Security Manager FSM is a suite of multi-vendor firewall security and change management software from SolarWinds USA. A security vulnerability exists in the installation process of SolarWinds FSM. A remote attacker could exploit the vulnerability to execute arbitrary code...
SolarWinds Firewall Security Manager userlogin.jsp Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SolarWinds Firewall Security Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of client sessions. The issue lies in the ability to...
Optimizing Network Security with SolarWinds Firewall Security Manager (FSM)
Firewalls are the front-line soldiers, who sit strategically at the edge of your network and defend it from various security threats. Firewalls require constant maintenance and management to ensure that they are accurately configured for optimal security, continuous compliance, and high...