5 matches found
[Gosecure Adivsory] Neoteris IVE Vulnerability
Gosecure Advisory http://www.gosecure.ca Neoteris IVE changepassword.cgi Authentication Bypass Date Published: 2004-09-20 Date Discovered: 2004-07-23 Advisory ID: GOSECURE-2004-10 Class: Design Error Risk: Medium Vendor: Juniper Networks www.juniper.net Advisory URL:...
Neoteris IVE password bruteforcing
Change password page doesn't limit the number of attempts...
[Gosecure Adivsory] Neoteris IVE Vulnerability
Gosecure Advisory http://www.gosecure.ca Neoteris IVE changepassword.cgi Authentication Bypass Date Published: 2004-09-20 Date Discovered: 2004-07-23 Advisory ID: GOSECURE-2004-10 Class: Design Error Risk: Medium Vendor: Juniper Networks www.juniper.net Advisory URL:...
Neoteris IVE swsrv.cgi XSS
The remote host is running the Neoteris IVE. There is a cross-site scripting issue in this server in the CGI swsrv.cgi that could allow an attacker to perform a session hijacking. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Ref : Date: Tue, 6 May 2003 19:14:40 -0700 PDT From: Dave Palumb...
XSS In Neoteris IVE Allows Session Hijacking
Note to Moderator: In light of some recent cross-site scripting posts allowed through to Bugtraq recently, grateful if you would pass this one onto the list....thanks. -d. ----------------------------------------------------------------------------------------------------=sMax. Security Advisory=...