36 matches found
EUVD-2001-1435
Malware in sbrugna...
EUVD-2003-1302
Malware in sbrugna...
EUVD-2003-1301
Malware in sbrugna...
EUVD-2005-1001
Malware in sbrugna...
EUVD-2004-0671
Malware in sbrugna...
CVE-2005-10001
A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redirect. The exploit has been disclosed to the...
CVE-2005-10001
A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redirect. The exploit has been disclosed to the...
CVE-2005-10001
CVE-2005-10001 affects Broadcom/Netegrity SiteMinder up to version 4.5.1. The vulnerability lies in the Login component, specifically the file /siteminderagent/pwcgi/smpwservicescgi.exe, where manipulation of the target argument causes an open redirect. Public exploit details exist. The documenta...
CVE-2005-10001 Netegrity SiteMinder Login smpwservicescgi.exe redirect
A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redirect. The exploit has been disclosed to the...
CVE-2005-10001 Netegrity SiteMinder Login smpwservicescgi.exe redirect
A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redirect. The exploit has been disclosed to the...
Netegrity IdentityMinder Web Edition 5.6 Null Byte XSS
No description provided by source. source: http://www.securityfocus.com/bid/10645/info Netegrity IdentityMinder is a tool designed for the Microsoft Windows platform to manage and maintain users and user accounts. The tool supports a web based interface for creating and removing users in multi-us...
Netegrity IdentityMinder Web Edition 5.6 Management Interface XSS
No description provided by source. source: http://www.securityfocus.com/bid/10645/info Netegrity IdentityMinder is a tool designed for the Microsoft Windows platform to manage and maintain users and user accounts. The tool supports a web based interface for creating and removing users in multi-us...
CVE-2003-1312
CVE-2003-1312 affects siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder, where a session ID is placed in the SMSESSION parameter value within a URL. This could allow an attacker to obtain the session ID via network sniffing, Referer logs, or similar methods. The provided documents describe...
CVE-2003-1312
siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder places a session ID string in the value of the SMSESSION parameter in a URL, which might allow remote attackers to obtain the ID by sniffing, reading Referer logs, or other methods...
CVE-2003-1311
siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder does not ensure that the TARGET parameter names a valid redirection resource, which allows remote attackers to construct a URL that might trick users into visiting an arbitrary web site referenced by this parameter...
CVE-2003-1311
Technical details about CVE-2003-1311 are not publicly available in the provided connected documents. No concrete affected products, versions, root cause specifics, or remediation are present. Monitor for updates to obtain authoritative information.
CVE-2001-1455
CVE-2001-1455 affects Netegrity SiteMinder 3.6–4.5.1. The vulnerability allows remote attackers to bypass filtering by using URLs containing Unicode characters, potentially compromising filtering/ access control. No remediation details are provided in the supplied documents. If exploit informatio...
CVE-2001-1455
Netegrity SiteMinder 3.6 through 4.5.1 allows remote attackers to bypass filtering via URLs containing Unicode characters...
netegrity.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Dear ladies and gentlemen We have found a potential security vulnerability in the Netegrity SiteMinder script smpwservicescgi.exe. If a user is connecting to a secured web server over an url like https://www.scip.ch just an example with our domain he...
CVE-2004-0672
Multiple cross-site scripting XSS vulnerabilities in the primary and management web interfaces in Netegrity IdentityMinder Web Edition 5.6 allows remote attackers to execute script as other users via 1 script that starts with %00 in the numOfExpressions parameter or 2 the mobjtype parameter...