Lucene search
K

7 matches found

Prion
Prion
added 2006/05/15 10:2 a.m.17 views

Information disclosure

NmConsole/Login.asp in Ipswitch WhatsUp Professional 2006 and Ipswitch WhatsUp Professional 2006 Premium generates different error messages in a way that allows remote attackers to enumerate valid usernames. NOTE: the provenance of this information is unknown; the details are obtained solely from...

5CVSS6.6AI score0.03792EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2006/05/15 10:2 a.m.15 views

Design/Logic Flaw

Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to obtain source code for scripts via a trailing dot in a request to NmConsole/Login.asp...

5CVSS7AI score0.0353EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2006/05/15 10:0 a.m.19 views

CVE-2006-2352

Multiple cross-site scripting XSS vulnerabilities in IPswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allow remote attackers to inject arbitrary web script or HTML via unknown vectors in 1 NmConsole/Tools.asp and 2 NmConsole/DeviceSelection.asp. NOTE: the provenance of thi...

5.6AI score0.02502EPSS
Exploits1References5
Prion
Prion
added 2006/02/28 11:2 a.m.13 views

Design/Logic Flaw

NmService.exe in Ipswitch WhatsUp Professional 2006 allows remote attackers to cause a denial of service CPU consumption via crafted requests to Login.asp, possibly involving the 1 "In" and 2 "b;tnLogIn" parameters, or 3 malformed btnLogIn parameters, possibly involving missing "" open bracket or...

5CVSS7.3AI score0.15913EPSS
Exploits1References7Affected Software1
CVE
CVE
added 2006/02/28 11:0 a.m.47 views

CVE-2006-0911

CVE-2006-0911 affects Ipswitch WhatsUp Professional 2006. The vulnerable component is NmService.exe handling requests to Login.asp. The underlying issue is triggered by crafted requests that use the parameters (1) "In]" and (2) "b;tnLogIn", or (3) malformed btnLogIn, potentially involving missing...

5CVSS6.8AI score0.15913EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2006/02/28 11:0 a.m.23 views

CVE-2006-0911

NmService.exe in Ipswitch WhatsUp Professional 2006 allows remote attackers to cause a denial of service CPU consumption via crafted requests to Login.asp, possibly involving the 1 "In" and 2 "b;tnLogIn" parameters, or 3 malformed btnLogIn parameters, possibly involving missing "" open bracket or...

6.8AI score0.15913EPSS
Exploits1References7
Exploit DB
Exploit DB
added 2006/02/22 12:0 a.m.21 views

Ipswitch WhatsUp Professional 2006 - Remote Denial of Service

source: https://www.securityfocus.com/bid/16771/info Ipswitch WhatsUp Professional 2006 is susceptible to a remote denial-of-service vulnerability. This issue is due to the application's failure to properly handle certain HTTP GET requests. This issue allows remote attackers to consume excessive...

7.4AI score
Exploits0
Rows per page
Query Builder