30 matches found
EUVD-2011-3653
Malware in sbrugna...
EUVD-2011-3652
Malware in sbrugna...
CVE-2011-3693
NetSaro Enterprise Messenger Server 2.0 allows local users to discover cleartext server credentials by reading the NetSaro.fdb file...
CVE-2011-3694
The Server Administration Console in NetSaro Enterprise Messenger Server 2.0 allows remote attackers to read application source code by appending a %00 character to a URL...
CVE-2011-3692
NetSaro Enterprise Messenger Server 2.0 stores cleartext console credentials in configuration.xml, which allows local users to obtain sensitive information by reading this file and performing a base64 decoding step...
NetSaro Enterprise Messenger 2.0 - Multiple Vulnerabilities
No description provided by source. =================================================== Secur-I Research Group Security Advisory SV-2011-004 =================================================== Title: NetSaro Enterprise Messenger v2.0 Multiple Vulnerabilities Product: Enterprise Messenger Server...
CVE-2011-3694
The Server Administration Console in NetSaro Enterprise Messenger Server 2.0 allows remote attackers to read application source code by appending a %00 character to a URL...
CVE-2011-3693
NetSaro Enterprise Messenger Server 2.0 allows local users to discover cleartext server credentials by reading the NetSaro.fdb file...
CVE-2011-3692
NetSaro Enterprise Messenger Server 2.0 stores cleartext console credentials in configuration.xml, which allows local users to obtain sensitive information by reading this file and performing a base64 decoding step...
Code injection
The Server Administration Console in NetSaro Enterprise Messenger Server 2.0 allows remote attackers to read application source code by appending a %00 character to a URL...
Code injection
NetSaro Enterprise Messenger Server 2.0 allows local users to discover cleartext server credentials by reading the NetSaro.fdb file...
Information disclosure
NetSaro Enterprise Messenger Server 2.0 stores cleartext console credentials in configuration.xml, which allows local users to obtain sensitive information by reading this file and performing a base64 decoding step...
CVE-2011-3692
NetSaro Enterprise Messenger Server 2.0 stores cleartext console credentials in configuration.xml, which allows local users to obtain sensitive information by reading this file and performing a base64 decoding step...
CVE-2011-3694
The Server Administration Console in NetSaro Enterprise Messenger Server 2.0 allows remote attackers to read application source code by appending a %00 character to a URL...
CVE-2011-3693
NetSaro Enterprise Messenger Server 2.0 allows local users to discover cleartext server credentials by reading the NetSaro.fdb file...
CVE-2011-3692
CVE-2011-3692 affects NetSaro Enterprise Messenger Server 2.0. The issue is information disclosure: the product stores cleartext console credentials in configuration.xml, allowing local users to read the file and decode credentials via base64. The NVD entry lists a low severity (CVSS v2 base scor...
CVE-2011-3694
The CVE-2011-3694 entry concerns NetSaro Enterprise Messenger Server 2.0. The vulnerability is in the Server Administration Console, where appending a null byte (%00) to a URL can cause the server to disclose application source code. This is described consistently across the CVE listing and Red H...
CVE-2011-3693
CVE-2011-3693 affects NetSaro Enterprise Messenger Server 2.0. The vulnerability arises because credentials are stored in the NetSaro.fdb file, which local users can read, leading to cleartext server credentials exposure. The impact is partial confidentiality loss on a local basis; attack vector ...
NetSaro Enterprise Messenger v2.0 Multiple Vulnerabilities
Exploit for php platform in category web applications Title: NetSaro Enterprise Messenger v2.0 Multiple Vulnerabilities Product: Enterprise Messenger Server Vulnerable version: 2.0 Other versions could also be affected Fixed version: N/A Impact: Medium Homepage: http://netsaro.com/Downloads.aspx...
NetSaro Enterprise Messenger Cross Site Scripting and HTML Injection Vulnerabilities
NetSaro Enterprise Messenger is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted...