87 matches found
CVE-2009-3861
Stack-based buffer overflow in SafeNet SoftRemote 10.8.5 Build 2 and 10.3.5 Build 6, and possibly other versions before 10.8.9, allows local users to execute arbitrary code via a long string in a 1 TREENAME or 2 GROUPNAME Policy file spd...
PT-2009-6086 · Safenet · Safenet Softremote
Name of the Vulnerable Software and Affected Versions: SafeNet SoftRemote versions 10.3.5 through 10.8.5 Description: A stack-based buffer overflow issue allows local users to execute arbitrary code via a long string in a 1 TREENAME or 2 GROUPNAME Policy file spd. Recommendations: For versions...
PT-2006-6734 · Baalasp · Baalasp Forum
Name of the Vulnerable Software and Affected Versions: BaalAsp forum affected versions not specified Description: The issue concerns multiple cross-site scripting XSS vulnerabilities in the addpost1.asp file of the BaalAsp forum. These vulnerabilities allow remote attackers to inject arbitrary we...
CVE-2005-2025
CVE-2005-2025 affects Cisco VPN 3000 Concentrator prior to 4.1.7.F. The vulnerability allows remote attackers to enumerate valid group names by sending an IKE Aggressive Mode packet with the group name in the ID field; a response is generated for valid group names, while invalid ones elicit no re...
CVE-2005-2025
Cisco VPN 3000 Concentrator before 4.1.7.F allows remote attackers to determine valid groupnames by sending an IKE Aggressive Mode packet with the groupname in the ID field, which generates a response if the groupname is valid, but does not generate a response for an invalid groupname...
Cisco VPN 3000 groupname enumeration
Different bahaviour for valid and invalid groupname in IKE aggressive mode...
CVE-2003-0377
SQL injection vulnerability in the web-based administration interface for iisPROTECT 2.2-r4, and possibly earlier versions, allows remote attackers to insert arbitrary SQL and execute code via certain variables, as demonstrated using the GroupName variable in SiteAdmin.ASP...