Lucene search
K

11 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

IBM Proventia Network Mail Security System 2.5 POST File Read

No description provided by source. !/usr/bin/python ''' Author: muts of Offensive Security Product: IBM ISS Proventia Mail Security Version: 2.5 Vendor Site: http://www.ibm.com/us/en/ Product Page: http://www-935.ibm.com/services/us/en/it-services/proventia-network-mail-security-system.html...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2012/08/08 12:0 a.m.16 views

IBM Proventia Network Mail Security System 2.5 - POST File Read

IBM Proventia Network Mail Security System 2.5 - POST File Read !/usr/bin/python ''' Author: muts of Offensive Security Product: IBM ISS Proventia Mail Security Version: 2.5 Vendor Site: http://www.ibm.com/us/en/ Product Page:...

0.1AI score
Exploits0
Prion
Prion
added 2010/09/14 5:0 p.m.16 views

Directory traversal

Directory traversal vulnerability in sla/index.php in the Local Management Interface LMI on the IBM Proventia Network Mail Security System PNMSS appliance with firmware before 2.5 allows remote authenticated users to read arbitrary files via a .. dot dot in the l parameter, related to an "Insecur...

4CVSS6.5AI score0.01292EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2010/09/14 4:39 p.m.27 views

CVE-2010-0152

Multiple cross-site scripting XSS vulnerabilities in the Local Management Interface LMI on the IBM Proventia Network Mail Security System PNMSS appliance with firmware before 2.5.0.2 allow remote attackers to inject arbitrary web script or HTML via 1 the date1 parameter to pvmmessagestore.php, 2...

5.2AI score0.00865EPSS
Exploits2References2
Cvelist
Cvelist
added 2010/09/14 4:39 p.m.23 views

CVE-2010-0153

Multiple cross-site request forgery CSRF vulnerabilities in the Local Management Interface LMI on the IBM Proventia Network Mail Security System PNMSS appliance with firmware before 2.5.0.2 allow remote attackers to hijack the authentication of administrators for requests that 1 change settings o...

7.2AI score0.00522EPSS
Exploits0References2
CVE
CVE
added 2010/09/14 4:39 p.m.51 views

CVE-2010-0152

The CVE-2010-0152 entry corresponds to multiple cross-site scripting (XSS) vulnerabilities in the Local Management Interface (LMI) of the IBM Proventia Network Mail Security System (PNMSS) appliance, affecting firmware prior to 2.5.0.2. The XSS flaws enable injection of arbitrary script/HTML via ...

4.3CVSS5.2AI score0.00865EPSS
Exploits2References2Affected Software2
Packet Storm
Packet Storm
added 2010/09/14 12:0 a.m.43 views

Proventia Network Mail Security System Insecure Direct Object Reference

Security Advisory: MVSA-10-008 / CVE-2010-0154 Vendor: IBM Products: Proventia Network Mail Security System Vulnerabilities: Insecure Direct Object Reference Risk: Medium Attack Vector: From Remote Authentication: Required Reference: http://www.ventuneac.net/security-advisories/MVSA-10-008...

4CVSS6.7AI score0.01292EPSS
Exploits2
securityvulns
securityvulns
added 2010/09/14 12:0 a.m.65 views

MVSA-10-009 / CVE-2010-0155 - IBM Proventia Network Mail Security System - CRLF Injection vulnerability

Security Advisory: MVSA-10-009 / CVE-2010-0155 Vendor: IBM Products: Proventia Network Mail Security System Vulnerabilities: CRLF Injection Risk: Medium Attack Vector: From Remote Authentication: Required Reference: http://www.ventuneac.net/security-advisories/MVSA-10-009 Description Web-based...

3.5CVSS0.9AI score0.007EPSS
Exploits1
securityvulns
securityvulns
added 2010/09/14 12:0 a.m.61 views

MVSA-10-006 / CVE-2010-0153 - IBM Proventia Network Mail Security System - Cross-Site Request Forgery vulnerabilities

Security Advisory: MVSA-10-006 / CVE-2010-0153 Vendor: IBM Products: Proventia Network Mail Security System Vulnerabilities: Cross-Site Request Forgery XSRF Risk: High Attack Vector: From Remote Authentication: Required Reference: http://www.ventuneac.net/security-advisories/MVSA-10-006 Descripti...

6.8CVSS0.7AI score0.00522EPSS
Exploits0
Packet Storm
Packet Storm
added 2010/09/14 12:0 a.m.42 views

Proventia Network Mail Security System CRLF Injection

Security Advisory: MVSA-10-009 / CVE-2010-0155 Vendor: IBM Products: Proventia Network Mail Security System Vulnerabilities: CRLF Injection Risk: Medium Attack Vector: From Remote Authentication: Required Reference: http://www.ventuneac.net/security-advisories/MVSA-10-009 Description Web-based...

3.5CVSS0.2AI score0.007EPSS
Exploits1
CVE
CVE
added 2009/07/20 6:0 p.m.50 views

CVE-2009-2543

CVE-2009-2543 (and closely related CVE-2009-1240) describes unspecified vulnerabilities in the IBM Proventia engine 4.9.0.0.44 (20081231) used in multiple IBM Proventia products that allow remote attackers to bypass malware detection by presenting modified archive formats (ZIP/CAB or RAR). The co...

10CVSS7AI score0.02277EPSS
Exploits0References4Affected Software4
Rows per page
Query Builder