130 matches found
CVE-2014-2950
Datum Systems SnIP on PSM-500 and PSM-4500 devices does not require authentication for FTP sessions, which allows remote attackers to obtain sensitive information via RETR commands...
Authentication flaw
Datum Systems SnIP on PSM-500 and PSM-4500 devices does not require authentication for FTP sessions, which allows remote attackers to obtain sensitive information via RETR commands...
CVE-2014-2951
Datum Systems SnIP on the PSM-500/PSM-4500 satellite modem devices contains a hardcoded admin password (admin) for the admin account, enabling remote attackers to gain access via unspecified vectors. CVE-2014-2951 is rated CVSS v2 base 10.0 (Network, no auth, complete confidentiality, integrity a...
CVE-2014-2951
Datum Systems SnIP on PSM-500 and PSM-4500 devices has a hardcoded password of admin for the admin account, which makes it easier for remote attackers to obtain access via unspecified vectors...
CVE-2014-2950
Datum Systems SnIP on PSM-500 and PSM-4500 devices does not require authentication for FTP sessions, which allows remote attackers to obtain sensitive information via RETR commands...
CVE-2014-2950
CVE-2014-2950 affects Datum Systems SnIP on PSM-4500 and PSM-500 satellite modem devices. The connected documents confirm that FTP sessions are allowed without authentication, enabling remote attackers to retrieve files via RETR and obtain sensitive information. The NVD entry lists a CVSSv2 base ...
Datum Systems satellite modem devices contain multiple vulnerabilities
Overview Datum Systems PSM-4500 and PSM-500 series satellite modem devices contain multiple vulnerabilities Description CWE-220:Sensitive Data Under FTP Root - CVE-2014-2950The Datum Systems SnIP operating system on PSM-4500 and PSM-500 satellite modem devices has FTP enabled by default with no...
CVE-2014-2928
CVE-2014-2928 (F5 iControl remote command execution) affects F5 BIG-IP products that expose the iControl API (LTM, APM, ASM, GTM, Link Controller, PSM, AAM, AFM, PEM, Analytics, Edge Gateway, WebAccelerator, WOM, Enterprise Manager, BIG-IQ variants). The vulnerability arises from insufficient val...
CVE-2012-3000
Summary: CVE-2012-3000 is an SQL injection vulnerability affecting multiple BIG-IP components (APM WebGUI, AVR WebGUI, and related WebGUIs) on BIG-IP LTM, GTM, ASM, Link Controller, PSM, Edge Gateway, Analytics, WebAccelerator, and WOM up to 11.2.x with specific HF3 fixes. Affected path/trigger: ...
Scientific Linux Security Update : RDMA stack on SL6.x i386/x86_64 (20131121)
A flaw was found in the way ibutils handled temporary files. A local attacker could use this flaw to cause arbitrary files to be overwritten as the root user via a symbolic link attack. CVE-2013-2561 It was discovered that librdmacm used a static port to connect to the ibacm service. A local...
Oracle Linux 6 : rdma / stack (ELSA-2013-1661)
The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-1661 advisory. ibutils 1.5.7-8 - Add the -output patch to have programs use /var/cache/ibutils instead of /tmp Resolves: bz958569 infinipath-psm Thu Jan 24 2013 Jay...
rdma stack security, bug fix, and enhancement update
ibutils 1.5.7-8 - Add the -output patch to have programs use /var/cache/ibutils instead of /tmp Resolves: bz958569 infinipath-psm Thu Jan 24 2013 Jay Fenlason - Put the udev rules file in the right place Resolves: rhbz866732 - include a patch from upstream to fix undefined references Resolves:...
RHEL 6 : RDMA stack (RHSA-2013:1661)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2013:1661 advisory. Red Hat Enterprise Linux includes a collection of Infiniband and iWARP utilities, libraries and development packages for writing application...
Moderate: Red Hat Security Advisory: RDMA stack security, bug fix, and enhancement update
Updated rdma, libibverbs, libmlx4, librdmacm, qperf, perftest, openmpi, compat-openmpi, infinipath-psm, mpitests, and rds-tools packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team ha...
CVE-2013-6016
The Traffic Management Microkernel TMM in F5 BIG-IP LTM, APM, ASM, Edge Gateway, GTM, Link Controller, and WOM 10.0.0 through 10.2.2 and 11.0.0; Analytics 11.0.0; PSM 9.4.0 through 9.4.8, 10.0.0 through 10.2.4, and 11.0.0 through 11.4.1; and WebAccelerator 9.4.0 through 9.4.8, 10.0.0 through...
Oracle Linux 6 : rdma (ELSA-2013-0509)
The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-0509 advisory. ibacm 1.0.8-0.git7a3adb7 - Update to latest upstream via git repo - Resolves: bz866222, bz866223 ibsim 0.5-7 - Bump and rebuild against latest opensm -...
K10905 : NTP vulnerability - CVE-2009-3563
Security Advisory Description Note: Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of F5...
CentOS 6 : ibacm / ibsim / ibutils / infiniband-diags / infinipath-psm / libibmad / libibumad / etc (CESA-2013:0509)
Updated RDMA packages that fix multiple security issues, various bugs, and add an enhancement are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give...
rdma security, bug fix and enhancement update
ibacm 1.0.8-0.git7a3adb7 - Update to latest upstream via git repo - Resolves: bz866222, bz866223 ibsim 0.5-7 - Bump and rebuild against latest opensm - Related: bz756396 ibutils 1.5.7-7 - Bump and rebuild against latest opensm - Related: bz756396 infiniband-diags 1.5.12-5 - Bump and rebuild again...
IBM Db2 SQL/PSM Stored Procedure Debugging Buffer Overflow Vulnerability - Linux
IBM Db2 is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2"; ifdescription...