14 matches found
EUVD-2005-2187
Malware in sbrugna...
EUVD-2005-2189
Malware in sbrugna...
EUVD-2009-3547
Malware in sbrugna...
EUVD-2009-3546
Malware in sbrugna...
Cross site scripting
McAfee IntruShield Network Security Manager NSM before 5.1.11.8.1 does not include the HTTPOnly flag in the Set-Cookie header for the session identifier, which allows remote attackers to hijack a session by leveraging a cross-site scripting XSS vulnerability...
CVE-2009-3566
McAfee IntruShield Network Security Manager NSM before 5.1.11.8.1 does not include the HTTPOnly flag in the Set-Cookie header for the session identifier, which allows remote attackers to hijack a session by leveraging a cross-site scripting XSS vulnerability...
CVE-2009-3565
Multiple cross-site scripting XSS vulnerabilities in intruvert/jsp/module/Login.jsp in McAfee IntruShield Network Security Manager NSM before 5.1.11.6 allow remote attackers to inject arbitrary web script or HTML via the 1 iaction or 2 node parameter...
CVE-2005-2187
McAfee IntruShield Security Management System allows remote authenticated users to access the "Generate Reports" feature and modify alerts by setting the Access option to true, as demonstrated using the 1 fullAccess or 2 fullAccessRight parameter in reports-column-center.jsp, or 3 fullAccess...
CVE-2005-2187
McAfee IntruShield Security Management System allows remote authenticated users to access the "Generate Reports" feature and modify alerts by setting the Access option to true, as demonstrated using the 1 fullAccess or 2 fullAccessRight parameter in reports-column-center.jsp, or 3 fullAccess...
CVE-2005-2186
Multiple cross-site scripting XSS vulnerabilities in McAfee IntruShield Security Management System allow remote authenticated users to inject arbitrary web script or HTML via the 1 thirdMenuName or 2 resourceName parameter to SystemEvent.jsp...
McAfee Intrushield IPS Abuse
/ $ An open security advisory 8 - McAfee Intrushield IPS Management Console Abuse 1: Bug Researcher: c0ntex - c0ntexbatgmail.com 2: Bug Released: July 06 2005 3: Bug Impact Rate: Medium / Hi 4: Bug Scope Rate: Local / Remote $ This advisory and/or proof of concept code must not be used for...
McAfee IntruShield Security Management System - Multiple Vulnerabilities
McAfee IntruShield Security Management System - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/14167/info McAfee IntruShield Security Management System is susceptible to multiple vulnerabilities. The first two issues are cross-site scripting vulnerabilities in the...
McAfee IntruShield Security Management System - Multiple Vulnerabilities
source: https://www.securityfocus.com/bid/14167/info McAfee IntruShield Security Management System is susceptible to multiple vulnerabilities. The first two issues are cross-site scripting vulnerabilities in the 'intruvert/jsp/systemHealth/SystemEvent.jsp' script. These issues are due to a failur...
McAfee IntruShield Management Console Detection
If an attacker can log into the IntruShield Management Console on the remote host, the attacker will have the ability to modify sensor configuration. C Tenable Network Security, Inc. - modified by Josh Zlatin-Amishav to support newer versions of the product. include"compat.inc"; if description...