36 matches found
EUVD-2003-1301
Malware in sbrugna...
EUVD-2005-1001
Malware in sbrugna...
EUVD-2001-1435
Malware in sbrugna...
EUVD-2004-0671
Malware in sbrugna...
EUVD-2003-1302
Malware in sbrugna...
CVE-2005-10001
A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redirect. The exploit has been disclosed to the...
CVE-2005-10001
A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redirect. The exploit has been disclosed to the...
CVE-2005-10001 Netegrity SiteMinder Login smpwservicescgi.exe redirect
A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redirect. The exploit has been disclosed to the...
CVE-2005-10001 Netegrity SiteMinder Login smpwservicescgi.exe redirect
A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redirect. The exploit has been disclosed to the...
CVE-2005-10001
CVE-2005-10001 affects Broadcom/Netegrity SiteMinder up to version 4.5.1. The vulnerability lies in the Login component, specifically the file /siteminderagent/pwcgi/smpwservicescgi.exe, where manipulation of the target argument causes an open redirect. Public exploit details exist. The documenta...
Netegrity IdentityMinder Web Edition 5.6 Management Interface XSS
No description provided by source. source: http://www.securityfocus.com/bid/10645/info Netegrity IdentityMinder is a tool designed for the Microsoft Windows platform to manage and maintain users and user accounts. The tool supports a web based interface for creating and removing users in multi-us...
Netegrity IdentityMinder Web Edition 5.6 Null Byte XSS
No description provided by source. source: http://www.securityfocus.com/bid/10645/info Netegrity IdentityMinder is a tool designed for the Microsoft Windows platform to manage and maintain users and user accounts. The tool supports a web based interface for creating and removing users in multi-us...
CVE-2003-1311
siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder does not ensure that the TARGET parameter names a valid redirection resource, which allows remote attackers to construct a URL that might trick users into visiting an arbitrary web site referenced by this parameter...
CVE-2003-1311
Technical details about CVE-2003-1311 are not publicly available in the provided connected documents. No concrete affected products, versions, root cause specifics, or remediation are present. Monitor for updates to obtain authoritative information.
CVE-2003-1312
siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder places a session ID string in the value of the SMSESSION parameter in a URL, which might allow remote attackers to obtain the ID by sniffing, reading Referer logs, or other methods...
CVE-2003-1312
CVE-2003-1312 affects siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder, where a session ID is placed in the SMSESSION parameter value within a URL. This could allow an attacker to obtain the session ID via network sniffing, Referer logs, or similar methods. The provided documents describe...
CVE-2001-1455
CVE-2001-1455 affects Netegrity SiteMinder 3.6–4.5.1. The vulnerability allows remote attackers to bypass filtering by using URLs containing Unicode characters, potentially compromising filtering/ access control. No remediation details are provided in the supplied documents. If exploit informatio...
CVE-2001-1455
Netegrity SiteMinder 3.6 through 4.5.1 allows remote attackers to bypass filtering via URLs containing Unicode characters...
netegrity.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Dear ladies and gentlemen We have found a potential security vulnerability in the Netegrity SiteMinder script smpwservicescgi.exe. If a user is connecting to a secured web server over an url like https://www.scip.ch just an example with our domain he...
CVE-2004-0672
Multiple cross-site scripting XSS vulnerabilities in the primary and management web interfaces in Netegrity IdentityMinder Web Edition 5.6 allows remote attackers to execute script as other users via 1 script that starts with %00 in the numOfExpressions parameter or 2 the mobjtype parameter...