366 matches found
Sql injection
SQL injection vulnerability in an unspecified function in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allows remote attackers to execute arbitrary SQL commands via unknown vectors...
Directory traversal
Directory traversal vulnerability in the web interface in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allows remote attackers to read arbitrary files via unspecified vectors...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in unspecified administrative modules in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allow remote attackers to hijack the authentication ...
Authentication flaw
The mail-filter web interface in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allows remote attackers to bypass authentication via unspecified vectors...
Command injection
An unspecified function in the web interface in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allows remote attackers to execute arbitrary commands via unknown vectors, related to a "command...
CVE-2011-1901
The mail-filter web interface in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allows remote attackers to bypass authentication via unspecified vectors...
CVE-2011-1903
SQL injection vulnerability in an unspecified function in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allows remote attackers to execute arbitrary SQL commands via unknown vectors...
CVE-2011-1904
An unspecified function in the web interface in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allows remote attackers to execute arbitrary commands via unknown vectors, related to a "command...
CVE-2011-1905
Multiple cross-site request forgery CSRF vulnerabilities in unspecified administrative modules in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allow remote attackers to hijack the authentication ...
CVE-2011-1902
Directory traversal vulnerability in the web interface in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allows remote attackers to read arbitrary files via unspecified vectors...
CVE-2011-1904
CVE-2011-1904 affects Proofpoint products: Messaging Security Gateway 6.2.0.263/6.2.0.237 and earlier versions of Protection Server (5.5.3–5.5.5, 6.0.2, 6.1.1, 6.2.0). The issue is described as an unspecified function in the web interface that allows remote command execution via unknown vectors, ...
CVE-2011-1903
The entry CVE-2011-1903 describes a SQL injection vulnerability in an unspecified function of Proofpoint Messaging Security Gateway (versions up to 6.2.0.263:6.2.0.237) and Proofpoint Protection Server (5.5.3–5.5.5, 6.0.2, 6.1.1, 6.2.0). The vulnerability allows remote attackers to execute arbitr...
CVE-2011-1902
Directory traversal vulnerability in the web interface affects Proofpoint products: Messaging Security Gateway versions up to 6.2.0.263:6.2.0.237 and Proofpoint Protection Server versions 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0. The issue allows remote attackers to read arbitrary files via u...
CVE-2011-1901
The CVE-2011-1901 entry concerns the mail-filter web interface in Proofpoint products: Proofpoint Messaging Security Gateway (versions up to 6.2.0.263:6.2.0.237) and Proofpoint Protection Server (5.5.3–5.5.5, 6.0.2, 6.1.1, 6.2.0). The flaw allows remote attackers to bypass authentication via unsp...
CVE-2011-1905
Technical details about CVE-2011-1905 are not publicly available in the provided connected documents. The records summarize CSRF vulnerabilities in Proofpoint products but do not specify affected components, versions beyond general ranges, or remediation details. Monitor for updates.
Proofpoint Protection Server 5.5.5 Cross Site Scripting
Sense of Security - Security Advisory - SOS-11-005 Release Date. 03-May-2011 Last Update. - Vendor Notification Date. 28-Apr-2011 Product. Proofpoint Protection Server Platform. Appliance Affected versions. 5.5.5 verified, and possibly others Severity Rating. Medium Impact. Cookie/credential thef...
Proofpoint Protection Server 5.5.5 - process.cgi Cross-Site Scripting
Proofpoint Protection Server 5.5.5 - process.cgi Cross-Site Scripting source: https://www.securityfocus.com/bid/47687/info Proofpoint Protection Server is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issu...
Proofpoint Protection Server crossite scripting
Crossite scripting in web interface...
Proofpoint Protection Server Cross-Site Scripting Vulnerability - SOS-11-005
Sense of Security - Security Advisory - SOS-11-005 Release Date. 03-May-2011 Last Update. - Vendor Notification Date. 28-Apr-2011 Product. Proofpoint Protection Server Platform. Appliance Affected versions. 5.5.5 verified, and possibly others Severity Rating. Medium Impact. Cookie/credential thef...
Proofpoint Protection Server 5.5.5 - 'process.cgi' Cross-Site Scripting
source: https://www.securityfocus.com/bid/47687/info Proofpoint Protection Server is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...