EUVD-2013-0503

Malware in sbrugna...

Security Bulletin: Informix Open Admin Tool (OAT) cross-site scripting vulnerability (CVE-2013-0492)

Abstract An attacker can trick a user into inserting a mal-formed URL address into a browser or clicking on a mal-formed URL link and exploit a cross-site scripting vulnerability that can be used to gain unauthorized access or collect sensitive information. Content CVEID: CVE-2013-0492 CVSS Base...

IBM Open Admin Tool SOAP welcomeServer PHP Command Injection

Added: 09/27/2017 CVE: CVE-2017-1092 BID: 98615 Background IBM Informix Dynamic Server IDS is an online transaction processing OLTP data server for enterprise and workgroup computing. Open Admin Tool OAT is an open source, platform-independent tool providing a graphical interface for administrati...

IBM Open Admin Tool SOAP welcomeServer PHP Command Injection

Added: 09/27/2017 CVE: CVE-2017-1092 BID: 98615 Background IBM Informix Dynamic Server IDS is an online transaction processing OLTP data server for enterprise and workgroup computing. Open Admin Tool OAT is an open source, platform-independent tool providing a graphical interface for administrati...

IBM Open Admin Tool SOAP welcomeServer PHP Command Injection

Added: 09/27/2017 CVE: CVE-2017-1092 BID: 98615 Background IBM Informix Dynamic Server IDS is an online transaction processing OLTP data server for enterprise and workgroup computing. Open Admin Tool OAT is an open source, platform-independent tool providing a graphical interface for administrati...

IBM Informix Dynamic Server 11.50.xCn < 11.50.xC9 / 11.70.xCn < 11.70.xC9 / 12.10.xCn < 12.10.xC8W2 Multiple Vulnerabilities (SWEET32)

The version of IBM Informix Dynamic Server installed on the remote host is 11.50.xCn prior to 11.50.xC9, 11.70.xCn prior to 11.70.xC9, or 12.10.xCn prior to 12.10.xC8W2. It is, therefore, affected by a multiple vulnerabilities : - A vulnerability, known as SWEET32, exists in the OpenSSL component...

IBM Informix Dynamic Server Open Admin Tool Remote Code Execution Vulnerability

IBM Informix Dynamic Server IDS is a scalable object-relational database server from IBM in the United States that provides continuous data availability and disaster recovery, among other features, for clustered data centers.Open Admin Tool is one of the Web applications used to manage and analyz...

CVE-2017-1092

IBM Informix Open Admin Tool 11.5, 11.7, and 12.1 could allow an unauthorized user to execute arbitrary code as system admin on Windows servers. IBM X-Force ID: 120390...

CVE-2017-1092

IBM Informix Open Admin Tool 11.5, 11.7, and 12.1 could allow an unauthorized user to execute arbitrary code as system admin on Windows servers. IBM X-Force ID: 120390...

Design/Logic Flaw

IBM Informix Open Admin Tool 11.5, 11.7, and 12.1 could allow an unauthorized user to execute arbitrary code as system admin on Windows servers. IBM X-Force ID: 120390...

CVE-2017-1092

The Connected IBM bulletin confirms CVE-2017-1092: IBM Informix Open Admin Tool contains an unauthenticated remote code execution vulnerability on Windows servers. Affected products include IBM Informix Dynamic Server (IDS) and Open Admin Tool. Root cause: Open Admin Tool permits arbitrary code e...

CVE-2017-1092

IBM Informix Open Admin Tool 11.5, 11.7, and 12.1 could allow an unauthorized user to execute arbitrary code as system admin on Windows servers. IBM X-Force ID: 120390...

CVE-2013-0492

Cross-site scripting XSS vulnerability in IBM Informix Open Admin Tool OAT 2.x and 3.x before 3.11.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

CVE-2013-0492

IBM Informix Open Admin Tool (OAT) suffers an XSS vulnerability (CVE-2013-0492) in OAT 3.11 and earlier. An authenticated user can craft a URL to inject arbitrary script/HTML. Remediation: upgrade to OAT 3.11.1 or later. CVSS base 3.5 (AV:N/AC:M/Au:S/C:N/I:P/A:N).

IBM Open Admin Tool 'index.php' Multiple Cross-Site Scripting Vulnerability

IBM Open Admin Tool is prone to multiple cross-site scripting vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

IBM Open Admin Tool Version Detection

This script finds the installed IBM Open Admin Tool version. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

IBM Open Admin Tool 2.27 Cross Site Scripting

“XSS in IBM Open Admin Tool OAT2.27installwindows.exe” Product version tested : OAT v2.27 Vendore has been informed : July 27, 2010 They fix the vulnerability on : March 2011 Fixed version: OAT v2.72 Credit : sumit kumar soni [email protected] Product Link:...

IBM Open Admin Tool 2.71 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/49364/info IBM Open Admin Tool is prone to multiple cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-based authentication credentials and...

XSS in IBM Open Admin Tool

“XSS in IBM Open Admin Tool OAT2.27installwindows.exe” Product version tested : OAT v2.27 Vendore has been informed : July 27, 2010 They fix the vulnerability on : March 2011 Fixed version: OAT v2.72 Credit : sumit kumar soni [email protected] Product Link:...

IBM Open Admin Tool 2.71 - Multiple Cross-Site Scripting Vulnerabilities

IBM Open Admin Tool 2.71 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/49364/info IBM Open Admin Tool is prone to multiple cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker can...