Cache: NonManagedConnectionFactory will log password in clear text when an exception occurs

The NonManagedConnectionFactory in JBoss Enterprise Application Platform EAP 5.1.2 and 5.2.0, Web Platform EWP 5.1.2 and 5.2.0, and BRMS Platform before 5.3.1 logs the username and password in cleartext when an exception is thrown, which allows local users to obtain sensitive information by readi...

JBoss invoker servlets do not require authentication

The 1 JMXInvokerHAServlet and 2 EJBInvokerHAServlet invoker servlets in JBoss Enterprise Application Platform EAP before 5.2.0, Web Platform EWP before 5.2.0, BRMS Platform before 5.3.1, and SOA Platform before 5.3.1 do not require authentication by default in certain profiles, which might allow...

JBoss invoker servlets do not require authentication

The 1 JMXInvokerHAServlet and 2 EJBInvokerHAServlet invoker servlets in JBoss Enterprise Application Platform EAP before 5.2.0, Web Platform EWP before 5.2.0, BRMS Platform before 5.3.1, and SOA Platform before 5.3.1 do not require authentication by default in certain profiles, which might allow...

VMware View Server Detection

VMware View Server, formerly known as VMware Virtual Desktop Infrastructure, is installed on the remote host. VMware View Server is an OS virtual desktop solution for personalized virtual desktops as a managed service from a virtualized platform. C Tenable Network Security, Inc...

CVE-2012-5954

Unspecified vulnerability in IBM Tivoli Storage Manager for Space Management aka TSM HSM before 6.2.5.0 and 6.3.x before 6.3.1.0 allows remote attackers to read or modify HSM-managed file system objects via unknown vectors...

CVE-2012-3721

Profile Manager in Apple Mac OS X before 10.7.5 does not properly perform authentication for the Device Management private interface, which allows attackers to enumerate managed devices via unspecified vectors...

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the Web Gateway component in IBM WebSphere MQ File Transfer Edition 7.0.4 and earlier, and WebSphere MQ - Managed File Transfer 7.5, allow remote attackers to hijack the authentication of arbitrary users for requests that 1 add user...

Scientific Linux Security Update : virt-v2v on SL6.x x86_64

virt-v2v is a tool for converting and importing virtual machines to libvirt-managed KVM Kernel-based Virtual Machine. Using virt-v2v to convert a guest that has a password-protected VNC console to a KVM guest removed that password protection from the converted guest: after conversion, a password...

SA-CONTRIB-2012-067 - Linkit - Access bypass

CVE: CVE-2012-2304 Linkitprovides an easy interface for internal and external linking. Linkit links to nodes, users, managed files, terms and have basic support for all entities by default, using an autocomplete field. When searching for entities, no access restrictions were added and users may s...

Fedora Update for puppet FEDORA-2012-2415

Check for the Version of puppet OpenVAS Vulnerability Test Fedora Update for puppet FEDORA-2012-2415 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

Cache: NonManagedConnectionFactory will log password in clear text when an exception occurs

The NonManagedConnectionFactory in JBoss Enterprise Application Platform EAP 5.1.2 and 5.2.0, Web Platform EWP 5.1.2 and 5.2.0, and BRMS Platform before 5.3.1 logs the username and password in cleartext when an exception is thrown, which allows local users to obtain sensitive information by readi...

HP Managed Printing Administration Detection

HP Managed Printing Administration, a web-based printer administration interface, was detected on the remote web server. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid57699; scriptversion"1.4"; scriptcvsdate"Date: 2019/11/25"; scriptnameenglish:"HP Managed Printing...

HP Managed Printing Administration < 2.6.4 Multiple Vulnerabilities

The remote web server is hosting a version of HP Managed Printing Administration earlier than 2.6.4. As such, it is potentially affected by the following vulnerabilities : - Multiple directory traversal, arbitrary file-deletion, and file-creation vulnerabilities affect the...

HP Managed Printing Administration jobDelivery Script Directory Traversal (intrusive check)

The HP Managed Printing Administration install on the remote web server is affected by a directory traversal vulnerability in the 'Default.asp' script. A remote, unauthenticated attacker, exploiting this flaw, could create arbitrary files on the remote host. Note that the HP Managed Printing...

HP Managed Printing Administration multiple security vulnerabilities

Buffer overflows, unauthorized files access, directory raversal...

[security bulletin] HPSBPI02732 SSRT100435 rev.1 - HP Managed Printing Administration, Remote Execution of Arbitrary Code and Other Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03128469 Version: 1 HPSBPI02732 SSRT100435 rev.1 - HP Managed Printing Administration, Remote Execution of Arbitrary Code and Other Vulnerabilities NOTICE: The information in this Security Bullet...

ZDI-12-001 : HP Managed Printing Administration img_id Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-001 : HP Managed Printing Administration imgid Multiple Vulnerabilities http://www.zerodayinitiative.com/advisories/ZDI-12-001 January 5, 2012 - -- CVE ID: CVE-2011-4169 - -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C - -- Affected Vendors:...

HP Managed Printing Administration img_id Multiple Vulnerabilities

This vulnerability allows remote attackers to remotely manipulate the application database and delete arbitrary files on vulnerable installations of HP Managed Printing Administration. Authentication is not required to exploit this vulnerability. The specific flaw exists and is duplicated within...

HP Managed Printing Administration Multiple Vulnerabilities

This host is installed with HP Managed Printing Administration and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodhpmanagedprintingadminmultvuln.nasl 7019 2017-08-29 11:51:27Z teissa $ HP Managed Printing Administration Multiple Vulnerabilities Authors: Rachana Shetty...

HP Managed Printing Administration Multiple Vulnerabilities

HP Managed Printing Administration is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...