Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-1001

Malware in sbrugna...

6.1CVSS6.4AI score0.00706EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2001-1435

Malware in sbrugna...

7.5CVSS6.4AI score0.02061EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2003-1302

Malware in sbrugna...

4.3CVSS6.4AI score0.01017EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2003-1301

Malware in sbrugna...

6.8CVSS6.4AI score0.01429EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/21 6:25 p.m.7 views

CVE-2005-10001

A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redirect. The exploit has been disclosed to the...

6.1CVSS6.8AI score0.00706EPSS
Exploits0References1
NVD
NVD
added 2022/03/28 9:15 p.m.14 views

CVE-2005-10001

A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redirect. The exploit has been disclosed to the...

6.1CVSS0.00706EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/03/28 8:45 p.m.20 views

CVE-2005-10001 Netegrity SiteMinder Login smpwservicescgi.exe redirect

A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redirect. The exploit has been disclosed to the...

5.4CVSS6.2AI score0.00706EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/03/28 8:45 p.m.6 views

CVE-2005-10001 Netegrity SiteMinder Login smpwservicescgi.exe redirect

A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redirect. The exploit has been disclosed to the...

5.4CVSS6.5AI score0.00706EPSS
Exploits0References1
CVE
CVE
added 2006/12/15 7:0 p.m.32 views

CVE-2003-1312

CVE-2003-1312 affects siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder, where a session ID is placed in the SMSESSION parameter value within a URL. This could allow an attacker to obtain the session ID via network sniffing, Referer logs, or similar methods. The provided documents describe...

4.3CVSS7AI score0.01017EPSS
Exploits0References2
Cvelist
Cvelist
added 2006/12/15 7:0 p.m.18 views

CVE-2003-1311

siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder does not ensure that the TARGET parameter names a valid redirection resource, which allows remote attackers to construct a URL that might trick users into visiting an arbitrary web site referenced by this parameter...

6.5AI score0.01429EPSS
Exploits1References2
Cvelist
Cvelist
added 2006/12/15 7:0 p.m.17 views

CVE-2003-1312

siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder places a session ID string in the value of the SMSESSION parameter in a URL, which might allow remote attackers to obtain the ID by sniffing, reading Referer logs, or other methods...

6.6AI score0.01017EPSS
Exploits0References2
Cvelist
Cvelist
added 2005/04/21 4:0 a.m.25 views

CVE-2001-1455

Netegrity SiteMinder 3.6 through 4.5.1 allows remote attackers to bypass filtering via URLs containing Unicode characters...

6.8AI score0.02061EPSS
Exploits0References3
CVE
CVE
added 2005/04/21 4:0 a.m.49 views

CVE-2001-1455

CVE-2001-1455 affects Netegrity SiteMinder 3.6–4.5.1. The vulnerability allows remote attackers to bypass filtering by using URLs containing Unicode characters, potentially compromising filtering/ access control. No remediation details are provided in the supplied documents. If exploit informatio...

7.5CVSS7.2AI score0.02061EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2004/04/23 12:0 a.m.36 views

Netegrity SiteMinder Affiliate Agent buffer overflow

Heap overflow on SMPROFILE cookie parsing...

4.8AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2004/04/23 12:0 a.m.64 views

[VulnWatch] Netegrity SiteMinder Affiliate Agent Cookie Overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake, Inc. www.atstake.com Security Advisory Advisory Name: Netegrity SiteMinder Affiliate Agent Cookie Overflow Release Date: 04/22/2004 Application: SiteMinder Affiliate Agent 4.x Platform: Solaris, Windows, HP-UX Severity: A remote attacker can...

10CVSS0.3AI score0.04986EPSS
Exploits0
NVD
NVD
added 2003/12/31 5:0 a.m.13 views

CVE-2003-1312

siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder places a session ID string in the value of the SMSESSION parameter in a URL, which might allow remote attackers to obtain the ID by sniffing, reading Referer logs, or other methods...

4.3CVSS6.6AI score0.01017EPSS
Exploits0References2
CERT
CERT
added 2002/10/29 12:0 a.m.19 views

Netegrity SiteMinder does not adequately validate user input thereby allowing user to bypass filters via crafted URL

Overview Netegrity SiteMinder does adequately vaildate HTTP requests containing malicious Unicode encodings. Description Netegrity SiteMinder is a platform for securing multiple web applications through a single point of user authentication. SiteMinder does not properly filter HTTP requests when...

6.9AI score
Exploits0References1
NVD
NVD
added 2001/08/24 4:0 a.m.18 views

CVE-2001-1455

Netegrity SiteMinder 3.6 through 4.5.1 allows remote attackers to bypass filtering via URLs containing Unicode characters...

7.5CVSS6.8AI score0.02061EPSS
Exploits0References3
Cvelist
Cvelist
added 2001/01/22 5:0 a.m.25 views

CVE-2000-0850

Netegrity SiteMinder before 4.11 allows remote attackers to bypass its authentication mechanism by appending "$/FILENAME.ext" where ext is .ccc, .class, or .jpg to the requested URL...

7AI score0.01692EPSS
Exploits0References3
CVE
CVE
added 2001/01/22 5:0 a.m.43 views

CVE-2000-0850

The CVE-2000-0850 entry corresponds to Netegrity SiteMinder prior to version 4.11, where an authentication bypass is possible by appending "$/FILENAME.ext" to the requested URL. The exploit targets the authentication check and can succeed with extensions such as .ccc, .class, or .jpg, effectively...

7.5CVSS7.4AI score0.01692EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder