42 matches found
EUVD-2011-4020
Malware in sbrugna...
EUVD-2012-4666
Malware in sbrugna...
EUVD-2012-4667
Malware in sbrugna...
EUVD-2011-4021
Malware in sbrugna...
EUVD-2012-4665
Malware in sbrugna...
CVE-2012-4742
The webnoderegister function in web.pm in PacketFence before 3.0.2 might allow remote attackers to execute arbitrary code via unspecified vectors...
SOGo and PacketFence Impacted by SAML Implementation Vulnerabilities
Part of Akamai's incident management process for vulnerabilities in third party software involves verifying potential impact in other systems using the same or similar libraries. While following that process when addressing the SAML impersonation vulnerability, CVE-2021-28091, which impacted...
SAML Implementation Vulnerability Impacting Some Akamai Services
This blog post provides an overview of a vulnerability discovered in Akamai's Enterprise Application Access EAA product which has been patched. This vulnerability could have allowed an actor to impersonate an authorized user when interacting with an application that used Security Assertion Markup...
SOGo and PacketFence Impacted by SAML Implementation Vulnerabilities
Part of Akamai's incident management process for vulnerabilities in third party software involves verifying potential impact in other systems using the same or similar libraries...
Akamai + Fingerbank: How an open source community can transform security
Isn't it amazing how seemingly simple decisions can have far-reaching effects? When the Inverse team in Montreal took over PacketFence in 2008, it was an open source OS solution. They recognized the inherent value in keeping it as such. In so doing, they didn't just launch a product--they created...
Open Source Network Access Control: PacketFence
PacketFence is a fully supported, trusted, Free and Open Source network access control NAC system. Boasting an impressive feature set including a captive-portal for registration and remediation, centralized wired and wireless management, 802.1X support, layer-2 isolation of problematic devices,...
PacketFence Bypass Authentication Vulnerability
PacketFence is an open source network access control solution. A security vulnerability exists in the 'checkpassword' function in the html/admin/login.php file in versions prior to PacketFence 3.0.2. A remote attacker can exploit this vulnerability to bypass authentication with the help of an emp...
PacketFence Injection Vulnerability
PacketFence is an open source network access control solution. A security vulnerability exists in the html/admin/login.php file in versions prior to PacketFence 3.0.2. A remote attacker can exploit this vulnerability with a specially crafted username to perform an LDAP injection attack and bypass...
Authentication flaw
html/admin/login.php in PacketFence before 3.0.2 allows remote attackers to conduct LDAP injection attacks and consequently bypass authentication via a crafted username...
CVE-2011-4068
The checkpassword function in html/admin/login.php in PacketFence before 3.0.2 allows remote attackers to bypass authentication via an empty password...
CVE-2011-4069
html/admin/login.php in PacketFence before 3.0.2 allows remote attackers to conduct LDAP injection attacks and consequently bypass authentication via a crafted username...
CVE-2011-4068
The checkpassword function in html/admin/login.php in PacketFence before 3.0.2 allows remote attackers to bypass authentication via an empty password...
Authentication flaw
The checkpassword function in html/admin/login.php in PacketFence before 3.0.2 allows remote attackers to bypass authentication via an empty password...
CVE-2011-4068
The checkpassword function in html/admin/login.php in PacketFence before 3.0.2 allows remote attackers to bypass authentication via an empty password...
CVE-2011-4069
html/admin/login.php in PacketFence before 3.0.2 allows remote attackers to conduct LDAP injection attacks and consequently bypass authentication via a crafted username...