NETIKUS EventSentry 安全漏洞

NETIKUS EventSentry is a network monitoring software developed by the American company NETIKUS. Versions of NETIKUS EventSentry prior to 6.0.1.20 contained security vulnerabilities. These vulnerabilities stemmed from the unvalidated password change mechanism in the account management feature of t...

EUVD-2016-6030

Malware in sbrugna...

Netikus EventSentry Cross-Site Scripting Vulnerability

Netikus EventSentry is an event log monitoring manager from NETIKUS.NET that provides real-time log analysis, memory event correlation and threat attack response. A cross-site scripting vulnerability exists in versions of Netikus EventSentry prior to 3.2.1.44. A remote attacker can exploit this...

CVE-2016-5077

Netikus EventSentry before 3.2.1.44 has XSS via SNMP...

CVE-2016-5077

Netikus EventSentry before 3.2.1.44 has XSS via SNMP...

Code injection

Netikus EventSentry before 3.2.1.44 has XSS via SNMP...

CVE-2016-5077

Netikus EventSentry before 3.2.1.44 has XSS via SNMP...

CVE-2016-5077

Netikus EventSentry is affected by a cross-site scripting (XSS) vulnerability via SNMP in versions prior to 3.2.1.44. Root cause: input processed via SNMP is reflected/processed in a way that enables script injection. Impact per CVSS: limited integrity impact, no confidentiality or availability i...