31 matches found
Cisco BBSM Captive Portal Cross-site Scripting
Title: Cisco BBSM Captive Portal Cross-site Scripting ------------------------------------------------------------- Vendor: Cisco Systems Vendor URL: www.cisco.com Vendor Response: Vendor has been notified and has since addressed the issue in the latest software release. Description: A...
Swiki 1.5 Multiple Cross-Site Scripting Vulnerabilities
Title: Swiki 1.5 Multiple Cross-Site Scripting Vulnerabilities Vendor URL: http://wiki.squeak.org/swiki Vendor Contacted: Yes Description: Multiple stored and reflective cross-site scripting vulnerabilities were identified in Swiki 1.5. Reflective example: http://host:8000/scriptalert"XSS";/scrip...
CVE-2002-0598
Format string vulnerability in Foundstone FScan 1.12 with banner grabbing enabled allows remote attackers to execute arbitrary code on the scanning system via format string specifiers in the server banner...
CVE-2002-0598
Foundstone FScan 1.12 with banner grabbing enabled is affected by a format string vulnerability in the server banner that can allow remote code execution. The issue is documented with a CVE listing and a CVSS v2 base score of 7.5 (HIGH); impact is partial on confidentiality, integrity, and availa...
CVE-2002-0598
Format string vulnerability in Foundstone FScan 1.12 with banner grabbing enabled allows remote attackers to execute arbitrary code on the scanning system via format string specifiers in the server banner...
Format string bug in Foundstone Fscan
Format string bug during server banner analisys...
KPMG-2002014: Foundstone Fscan Format String Bug
-------------------------------------------------------------------- Title: Foundstone Fscan Format String Bug BUG-ID: 2002014 Released: 19th Apr 2002 -------------------------------------------------------------------- Problem: ======== A flaw in Foundstone Fscan could result in a malicious...
Allaire's JRUN Unauthenticated Access to WEB-INF directory
Foundstone, Inc. http://www.foundstone.com "Securing the Dot Com World" Security Advisory Allaire's JRUN ---------------------------------------------------------------------- FS Advisory ID: FS-102300-12-JRUN Release Date: October 23, 2000 Product: JRun 3.0 Vendor: Allaire Inc...
FS-072500-7-ANA.txt
Foundstone, Inc. http://www.foundstone.com "Securing the Dot Com World" Security Advisory AnalogX Proxy DoS ---------------------------------------------------------------------- FS Advisory ID: FS-072500-7-ANA.txt Release Date: July 25, 2000 Product: Proxy Vendor: AnalogX http://www.analogx.com...
Sun's Java Web Server remote command execution vulnerability
Foundstone, Inc. http://www.foundstone.com "Securing the Dot Com World" Security Advisory Sun's Java Web Server ---------------------------------------------------------------------- FS Advisory ID: FS-071000-5-JWS Release Date: July 10, 2000 Product: Java Web Server Vendor: Sun Microsystems...
FS-071000-5-JWS
Foundstone, Inc. http://www.foundstone.com "Securing the Dot Com World" Security Advisory Sun's Java Web Server ---------------------------------------------------------------------- FS Advisory ID: FS-071000-5-JWS Release Date: July 10, 2000 Product: Java Web Server Vendor: Sun Microsystems...