33 matches found
EUVD-2007-3815
Malware in sbrugna...
Security Bulletin: IBM Security Proventia Network Active Bypass is affected by openssl vulnerabilities (CVE-2019-1547, CVE-2019-1563)
Summary IBM Security Proventia Network Active Bypass has addressed the following vulnerabilities. CVE-2019-1547, CVE-2019-1563 Vulnerability Details CVE-ID: CVE-2019-1547 Description: OpenSSL could allow a local authenticated attacker to obtain sensitive information, caused by the ability to...
Security Bulletin: IBM Security Proventia Network Active Bypass is affected by glibc vulnerabilities (CVE-2018-20796, CVE-2019-9169)
Summary IBM Security Proventia Network Active Bypass has addressed the following vulnerabilities. CVE-2018-20796, CVE-2019-9169 Vulnerability Details CVE-ID: CVE-2018-20796 Description: GNU C Library aka glibc or libc6 is vulnerable to a denial of service, caused by an uncontrolled recursion in t...
Security Bulletin: IBM Security Proventia Network Active Bypass is affected by glibc vulnerabilities (CVE-2018-19591)
Summary IBM Security Proventia Network Active Bypass has addressed the following vulnerabilities. CVE-2018-19591 Vulnerability Details CVEID: CVE-2018-19591 DESCRIPTION: Glibc is vulnerable to a denial of service, caused by the failure to close descriptors by ifnametoindex. By invoking a call to...
Security Bulletin: IBM Security Proventia Network Active Bypass is affected by glibc vulnerabilities (CVE-2018-1000001, CVE-2017-16997, CVE-2017-1000408, CVE-2017-1000409, CVE-2017-17426)
Summary IBM Security Proventia Network Active Bypass has addressed the following vulnerabilities. CVE-2018-1000001, CVE-2017-16997, CVE-2017-1000408, CVE-2017-1000409, CVE-2017-17426 Vulnerability Details CVEID: CVE-2017-17426 DESCRIPTION: GNU C Library aka glibc or libc6 is vulnerable to a...
Security Bulletin: IBM Security Proventia Network Active Bypass is affected by openssl vulnerabilities (CVE-2017-3738, CVE-2017-3737)
Summary IBM Security Proventia Network Active Bypass has addressed the following vulnerabilities. CVE-2017-3738, CVE-2017-3737 Vulnerability Details CVEID: CVE-2017-3738 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by an overflow bug in the AVX2...
Security Bulletin: IBM Security Proventia Network Active Bypass is affected by glibc vulnerabilities (CVE-2011-5320, CVE-2017-15670, CVE-2017-15671, CVE-2017-15804)
Summary IBM Security Proventia Network Active Bypass has addressed the following vulnerabilities. CVE-2011-5320, CVE-2017-15670, CVE-2017-15671, CVE-2017-15804 Vulnerability Details CVEID: CVE-2017-15804 DESCRIPTION: GNU C Library aka glibc or libc6 is vulnerable to a buffer overflow, caused by...
Security Bulletin: IBM Security Proventia Network Active Bypass is affected by glibc vulnerability (CVE-2017-1000366)
Summary IBM Security Proventia Network Active Bypass has addressed the following vulnerability. CVE-2017-1000366 Vulnerability Details CVEID: CVE-2017-1000366 DESCRIPTION: Glibc could allow a local attacker to execute arbitrary code on the system, caused by a vulnerability that allows specially...
Security Bulletin: GNU C library (glibc) vulnerabilities affect IBM Security Network Active Bypass (CVE-2014-9761, CVE-2015-8778, CVE-2015-8779)
Summary GNU C library glibc vulnerabilities were found that affect IBM Security Network Active Bypass. Vulnerability Details CVEID: CVE-2014-9761 DESCRIPTION: GNU C Library glibc is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the nan function. By sending an...
Security Bulletin: Security vulnerabilities in glibc affect IBM Security Proventia Network Enterprise Scanner (CVE-2014-9761, CVE-2015-8778, CVE-2015-8779, CVE-2015-1781, CVE-2015-5229, CVE-2015-8776)
Summary Several security vulnerabilities have been found in glibc module of IBM Security Proventia Network Enterprise Scanner. Vulnerability Details CVEID: CVE-2014-9761 DESCRIPTION: GNU C Library glibc is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the nan...
Security Bulletin: Security Vulnerabilities in OpenSSL, glibc, gcc, Net-SNMP, and OpenSSH affect IBM Security Proventia Network Enterprise Scanner
Summary OpenSSL vulnerabilities were disclosed on December 3, 2015 by the OpenSSL Project. OpenSSL is used by IBM Security Proventia Network Enterprise Scanner. This bulletin addresses the applicable CVEs as well as other CVEs related to glibc, gcc, Net-SNMP, and OpenSSH. CVE-2015-5600,...
Security Bulletin: Vulnerabilities in OpenSSL affect Proventia Network Active Bypass (CVE-2013-2566)
Summary OpenSSL vulnerability CVE-2013-2566 has been found to affect IBM Security Proventia Network Active Bypass Vulnerability Details CVEID: CVE-2013-2566 DESCRIPTION: The RC4 algorithm, as used in the TLS protocol and SSL protocol, could allow a remote attacker to obtain sensitive information,...
Security Bulletin: IBM Security Proventia Network Active Bypass is affected by vulnerabilities in OpenSSL (CVE-2014-0160 and CVE-2014-0076)
Summary Security vulnerabilities have been discovered in OpenSSL. Vulnerability Details CVE-ID: CVE-2014-0160 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by an error in the TLS/DTLS heartbeat functionality. An attacker could exploit this vulnerabilit...
IBM Proventia Network Mail Security System 2.5 POST File Read
No description provided by source. !/usr/bin/python ''' Author: muts of Offensive Security Product: IBM ISS Proventia Mail Security Version: 2.5 Vendor Site: http://www.ibm.com/us/en/ Product Page: http://www-935.ibm.com/services/us/en/it-services/proventia-network-mail-security-system.html...
IBM Proventia Network Mail Security System 2.5 - POST File Read
IBM Proventia Network Mail Security System 2.5 - POST File Read !/usr/bin/python ''' Author: muts of Offensive Security Product: IBM ISS Proventia Mail Security Version: 2.5 Vendor Site: http://www.ibm.com/us/en/ Product Page:...
CVE-2010-0154
Directory traversal vulnerability in sla/index.php in the Local Management Interface LMI on the IBM Proventia Network Mail Security System PNMSS appliance with firmware before 2.5 allows remote authenticated users to read arbitrary files via a .. dot dot in the l parameter, related to an "Insecur...
Directory traversal
Directory traversal vulnerability in sla/index.php in the Local Management Interface LMI on the IBM Proventia Network Mail Security System PNMSS appliance with firmware before 2.5 allows remote authenticated users to read arbitrary files via a .. dot dot in the l parameter, related to an "Insecur...
CVE-2010-0152
Multiple cross-site scripting XSS vulnerabilities in the Local Management Interface LMI on the IBM Proventia Network Mail Security System PNMSS appliance with firmware before 2.5.0.2 allow remote attackers to inject arbitrary web script or HTML via 1 the date1 parameter to pvmmessagestore.php, 2...
CVE-2010-0152
The CVE-2010-0152 entry corresponds to multiple cross-site scripting (XSS) vulnerabilities in the Local Management Interface (LMI) of the IBM Proventia Network Mail Security System (PNMSS) appliance, affecting firmware prior to 2.5.0.2. The XSS flaws enable injection of arbitrary script/HTML via ...
CVE-2010-0153
CVE-2010-0153 pertains to the IBM Proventia Network Mail Security System (PNMSS) Local Management Interface (LMI). The issue is a set of cross-site request forgery (CSRF) vulnerabilities in firmware before 2.5.0.2 that allow an attacker, via remote access, to hijack the authentication of administ...