25 matches found
EUVD-2012-6153
Malware in sbrugna...
EUVD-2004-0671
Malware in sbrugna...
EUVD-2012-6154
Malware in sbrugna...
CVE-2012-6299
Unspecified vulnerability in CA IdentityMinder r12.0 through CR16, r12.5 before SP15, and r12.6 GA allows remote attackers to bypass intended access restrictions via unknown vectors...
CVE-2012-6298
Unspecified vulnerability in CA IdentityMinder r12.0 through CR16, r12.5 before SP15, and r12.6 GA allows remote attackers to execute arbitrary commands or modify data via unknown vectors...
Netegrity IdentityMinder Web Edition 5.6 Null Byte XSS
No description provided by source. source: http://www.securityfocus.com/bid/10645/info Netegrity IdentityMinder is a tool designed for the Microsoft Windows platform to manage and maintain users and user accounts. The tool supports a web based interface for creating and removing users in multi-us...
Netegrity IdentityMinder Web Edition 5.6 Management Interface XSS
No description provided by source. source: http://www.securityfocus.com/bid/10645/info Netegrity IdentityMinder is a tool designed for the Microsoft Windows platform to manage and maintain users and user accounts. The tool supports a web based interface for creating and removing users in multi-us...
CA20121220-01: Security Notice for CA IdentityMinder
CA20121220-01: Security Notice for CA IdentityMinder Issued: December 20, 2012 CA Technologies Support is alerting customers to two potential risks in CA IdentityMinder formerly known as CA Identity Manager. Two vulnerabilities exist that can allow a remote attacker to execute arbitrary commands,...
CA IdentityMinder security vulnerabilities
Code execution, privilege escalation...
CVE-2012-6299
Unspecified vulnerability in CA IdentityMinder r12.0 through CR16, r12.5 before SP15, and r12.6 GA allows remote attackers to bypass intended access restrictions via unknown vectors...
CVE-2012-6298
Unspecified vulnerability in CA IdentityMinder r12.0 through CR16, r12.5 before SP15, and r12.6 GA allows remote attackers to execute arbitrary commands or modify data via unknown vectors...
Code injection
Unspecified vulnerability in CA IdentityMinder r12.0 through CR16, r12.5 before SP15, and r12.6 GA allows remote attackers to execute arbitrary commands or modify data via unknown vectors...
Code injection
Unspecified vulnerability in CA IdentityMinder r12.0 through CR16, r12.5 before SP15, and r12.6 GA allows remote attackers to bypass intended access restrictions via unknown vectors...
CVE-2012-6298
CA IdentityMinder (r12.0 through CR16, r12.5 before SP15, and r12.6 GA) contains an unspecified vulnerability that could allow a remote attacker to execute arbitrary commands or modify data via unknown vectors. The issue is documented in the CA Security Notice CA20121220-01 and is addressed by pa...
CVE-2012-6299
CA IdentityMinder (formerly Identity Manager) versions affected: r12.0 CR16 and earlier, r12.5 SP1 through SP14, and r12.6 GA. The CVE-2012-6299 vulnerability allows remote attackers to bypass access restrictions (elevated access) via unknown vectors due to insufficient access controls. Patches a...
CVE-2012-6299
Unspecified vulnerability in CA IdentityMinder r12.0 through CR16, r12.5 before SP15, and r12.6 GA allows remote attackers to bypass intended access restrictions via unknown vectors...
CVE-2012-6298
Unspecified vulnerability in CA IdentityMinder r12.0 through CR16, r12.5 before SP15, and r12.6 GA allows remote attackers to execute arbitrary commands or modify data via unknown vectors...
CVE-2004-0672
Multiple cross-site scripting XSS vulnerabilities in the primary and management web interfaces in Netegrity IdentityMinder Web Edition 5.6 allows remote attackers to execute script as other users via 1 script that starts with %00 in the numOfExpressions parameter or 2 the mobjtype parameter...
CVE-2004-0672
Multiple cross-site scripting XSS vulnerabilities in the primary and management web interfaces in Netegrity IdentityMinder Web Edition 5.6 allows remote attackers to execute script as other users via 1 script that starts with %00 in the numOfExpressions parameter or 2 the mobjtype parameter...
CVE-2004-0672
The CVE-2004-0672 entry applies to Netegrity IdentityMinder Web Edition 5.6, where multiple cross-site scripting (XSS) vulnerabilities affect the primary and management web interfaces. The issue allows remote attackers to execute scripts as other users via two vectors: (1) a script starting with ...