mfr-centre-idf.focaliz.net Cross Site Scripting vulnerability OBB-3348028

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

mfr-centre-idf.focaliz.net Cross Site Scripting vulnerability OBB-2926015

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

The vulnerability of the mfr_print() function in the tcpdump utility for capturing and analyzing network traffic allows a hacker to induce a service failure.

The vulnerability of the mfrprint function in the tcpdump network traffic capture and analysis utility is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

mfr-stgenis.fr Cross Site Scripting vulnerability OBB-1308212

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

cfa-mfr-stgillescroixdevie.fr Improper Access Control vulnerability

Open Bug Bounty ID: OBB-635154 Description| Value ---|--- Affected Website:| cfa-mfr-stgillescroixdevie.fr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Other Vulnerability Type:| IAC Improper Access Control / CWE-284 CVSSv3 Score:| 6.5...

CVE-2006-6475

FRAgent.exe in Mandiant First Response MFR before 1.1.1, when run in daemon mode with SSL enabled, allows remote attackers to cause a denial of service refused connections via malformed requests, which results in a mishandled exception...

CVE-2006-6477

CVE-2006-6477 concerns Mandiant First Response (MFR) prior to 1.1.1. The issue arises when the FRAgent daemon runs with HTTP (and also in SSL mode as per Symantec advisory) and binds non-exclusively to a socket, enabling a local attacker to hijack the agent and conduct a man-in-the-middle attack ...