6528 matches found
CVE-2008-5709
Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager CM 3.1 before 3.1.4 SP2, 4.0 before 4.0.3 SP1, and 5.0 before 5.0 SP3 allow remote authenticated users to execute arbitrary code via unknown attack vectors in the 1 Set Static Routes and 2 Backup...
Design/Logic Flaw
Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager CM 3.1 before 3.1.4 SP2, 4.0 before 4.0.3 SP1, and 5.0 before 5.0 SP3 allow remote authenticated users to execute arbitrary code via unknown attack vectors in the 1 Set Static Routes and 2 Backup...
CVE-2008-5710
Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager CM 3.1.x, 4.0.3, and 5.x allow remote attackers to read 1 configuration files, 2 log files, 3 binary image files, and 4 help files via unknown vectors...
Fedora 8 : openvpn-2.1-0.29.rc15.fc8 (2008-10499)
2008.11.19 -- Version 2.1rc15 Fixed issue introduced in 2.1rc14 that may cause a segfault when a --plugin module is used. Added server-side --opt-verify option: clients that connect with options that are incompatible with those of the server will be disconnected without this option, incompatible...
A-Link WL54AP3 and WL54AP2 CSRF+XSS vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Louhi Networks Information Security Research Security Advisory Advisory: A-Link WL54AP3 and WL54AP2 CSRF+XSS vulnerability Release Date: 2008/10/31 Last Modified: 2008/10/28 Authors: Jussi Vuokko, CISSP [email protected] Henri Lindberg...
A-Link WL54AP3 and WL54AP2 CSRF+XSS Vulnerability
No description provided by source. Louhi Networks Information Security Research Security Advisory Advisory: A-Link WL54AP3 and WL54AP2 CSRF+XSS vulnerability Release Date: 2008/10/31 Last Modified: 2008/10/28 Authors: Jussi Vuokko, CISSP [email protected] Henri Lindberg [email protected]...
A-Link WL54AP3 WL54AP2 - Cross-Site Request Forgery Cross-Site Scripting
A-Link WL54AP3 WL54AP2 - Cross-Site Request Forgery Cross-Site Scripting Louhi Networks Information Security Research Security Advisory Advisory: A-Link WL54AP3 and WL54AP2 CSRF+XSS vulnerability Release Date: 2008/10/31 Last Modified: 2008/10/28 Authors: Jussi Vuokko, CISSP [email protected]...
alink-xsrfxss.xt
Louhi Networks Information Security Research Security Advisory Advisory: A-Link WL54AP3 and WL54AP2 CSRF+XSS vulnerability Release Date: 2008/10/31 Last Modified: 2008/10/28 Authors: Jussi Vuokko, CISSP [email protected] Henri Lindberg [email protected] Device: A-Link WL54AP3 and WL54AP...
A-Link WL54AP3 and WL54AP2 CSRF+XSS Vulnerability
Exploit for hardware platform in category remote exploits ================================================= A-Link WL54AP3 and WL54AP2 CSRF+XSS Vulnerability ================================================= Louhi Networks Information Security Research Security Advisory Advisory: A-Link WL54AP3 a...
Packeteer Web Management Interface Version
It is possible to determine the version of the remote web application. Description : OpenVAS was able to determine the software version of the Packeteer web management interface running on the remote host. OpenVAS Vulnerability Test $Id: packeteerwebversion.nasl 5499 2017-03-06 13:06:09Z teissa $...
Packeteer/Bluecoat Web Management Interface Detection (HTTP)
HTTP based detection of the Packeteer Web Management Interface. SPDX-FileCopyrightText: 2008 nnposter Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2007-4350
Cross-site scripting XSS vulnerability in the management interface in HP SiteScope 9.0 build 911 allows remote attackers to inject arbitrary web script or HTML via an SNMP trap message...
phpwebgallery-hijackexec.txt
$b'.$sort.';' 64. ; An attacker could be able to inject and execute PHP code through $GET'sort', that is passed to createfunction at line 63 see http://www.securityfocus.com/bid/31398. Only admin can access to the plugins management interface, but the attacker might be able to retrieve a valid...
CVE-2008-3778
The remote management interface in SIP Enablement Services SES Server in Avaya SIP Enablement Services 5.0, and Communication Manager CM 5.0 on the S8300C with SES enabled, proceeds with Core router updates even when a login is invalid, which allows remote attackers to cause a denial of service...
Cross site request forgery (csrf)
The remote management interface in SIP Enablement Services SES Server in Avaya SIP Enablement Services 5.0, and Communication Manager CM 5.0 on the S8300C with SES enabled, proceeds with Core router updates even when a login is invalid, which allows remote attackers to cause a denial of service...
CVE-2008-3778
CVE-2008-3778 affects Avaya SIP Enablement Services (SES) Server 5.0 and Communication Manager 5.0 on the S8300C with SES enabled. The remote management interface can proceed with Core router updates even after an invalid login, enabling remote attackers to cause a messaging outage (DoS) or to ga...
Blue Coat K9 Web Protection Referer头栈溢出漏洞
BUGTRAQ ID: 30463 CVECAN ID: CVE-2007-2952 K9 Web Protection是家用电脑上所使用的内容过滤解决方案,允许用户控制可访问的Internet内容。 在访问基于Web的管理接口时K9 Web Protection的过滤服务(k9filter.exe)没有正确地处理Referer头。如果用户访问了恶意站点并向该接口返回了超长的Referer头,就可以触发栈溢出,导致执行任意指令。 Blue Coat Systems K9 Web Protection 3.2.44 Blue Coat Systems -----------------...
HP System Management Homepage < 2.1.12 Unspecified XSS
The remote host appears to be running HP System Management Homepage SMH, a web-based management interface for ProLiant and Integrity servers. The version of HP SMH installed on the remote host fails to sanitize user input to an unspecified parameter and script before using it to generate dynamic...
CVE-2008-3081
Multiple unspecified "input validation" vulnerabilities in the Web management interface aka Messaging Administration interface in Avaya Message Storage Server MSS 3.x and 4.0, and possibly Communication Manager 3.1.x, allow remote authenticated administrators to execute arbitrary commands as user...
Input validation
Multiple unspecified "input validation" vulnerabilities in the Web management interface aka Messaging Administration interface in Avaya Message Storage Server MSS 3.x and 4.0, and possibly Communication Manager 3.1.x, allow remote authenticated administrators to execute arbitrary commands as user...