Mozilla Firefox < 3.6.9

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 3.6.9. It is, therefore, affected by a vulnerability as referenced in the mfsa2010-63 advisory. - Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey...

Mozilla Firefox < 3.5.12

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 3.5.12. It is, therefore, affected by a vulnerability as referenced in the mfsa2010-63 advisory. - Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey...

EUVD-2015-2901

Malware in sbrugna...

EUVD-2015-2906

Malware in sbrugna...

EUVD-2014-9126

Malware in sbrugna...

EUVD-2021-24063

Malware in sbrugna...

EUVD-2012-4634

Malware in sbrugna...

EUVD-2015-2899

Malware in sbrugna...

EUVD-2014-9182

Malware in sbrugna...

NewStart CGSL MAIN 6.02 : curl Multiple Vulnerabilities (NS-SA-2024-0050)

The remote NewStart CGSL host, running version MAIN 6.02, has curl packages installed that are affected by multiple vulnerabilities: - The redirect implementation in curl and libcurl 5.11 through 7.19.3, when CURLOPTFOLLOWLOCATION is enabled, accepts arbitrary Location values, which might allow...

CVE-2012-6664

Multiple directory traversal vulnerabilities in the TFTP Server in Distinct Intranet Servers 3.10 and earlier allow remote attackers to read or write arbitrary files via a .. dot dot in the 1 get or 2 put commands...

CVE-2012-6664

Multiple directory traversal vulnerabilities in the TFTP Server in Distinct Intranet Servers 3.10 and earlier allow remote attackers to read or write arbitrary files via a .. dot dot in the 1 get or 2 put commands...

CVE-2012-6664

Multiple directory traversal vulnerabilities in the TFTP Server in Distinct Intranet Servers 3.10 and earlier allow remote attackers to read or write arbitrary files via a .. dot dot in the 1 get or 2 put commands...

Distinct Intranet Servers Security Vulnerability

Distinct Intranet Servers is a server software package from Distinct, Inc. It includes FTP, TFTP, LPD and BOOTP servers. A security vulnerability exists in Distinct Intranet Servers 3.10 and earlier versions that stems from a multiple directory traversal vulnerability in the TFTP server, which...

PT-2024-10551 · Unknown · Tftp Server +1

Name of the Vulnerable Software and Affected Versions: Distinct Intranet Servers versions 3.10 and earlier Description: The issue allows remote attackers to read or write arbitrary files via a .. dot dot in the 1 get or 2 put commands. This is due to multiple directory traversal vulnerabilities i...

CVE-2021-37498

An SSRF issue was discovered in Reprise License Manager RLM web interface through 14.2BL4 that allows remote attackers to trigger outbound requests to intranet servers, conduct port scans via the actserver parameter in License Activation function...

CVE-2021-37498

CVE-2021-37498 describes a server-side request forgery (SSRF) in the Reprise License Manager (RLM) web interface (up to version 14.2BL4 and prior). The vulnerability allows remote attackers to trigger outbound requests to intranet servers and perform port scanning via the actserver parameter in t...

CVE-2021-37498

An SSRF issue was discovered in Reprise License Manager RLM web interface through 14.2BL4 that allows remote attackers to trigger outbound requests to intranet servers, conduct port scans via the actserver parameter in License Activation function...

Improper Input Validation in Apache CXF

Apache CXF 2.0.x before 2.0.13, 2.1.x before 2.1.10, and 2.2.x before 2.2.9, as used in Apache ServiceMix, Apache Camel, Apache Chemistry, Apache jUDDI, Apache Geronimo, and other products, does not properly reject DTDs in SOAP messages, which allows remote attackers to read arbitrary files, send...

September 8, 2020—KB4577032 (OS Build 17134.1726)

September 8, 2020—KB4577032 OS Build 17134.1726 NEW IMPORTANT We have heard your feedback and understand your need to focus on business continuity in the midst of the global pandemic. As a result, we have decided to delay the scheduled end-of-service date for the Enterprise, Education, and IoT...