3 matches found
CVE-2009-1211
Blue Coat ProxySG, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access controls for Flash, Java, Silverlight, and probably other technologies, and possibly communicate with restricted intranet...
CVE-2019-11653
The CVE-2019-11653 entry affects Micro Focus Content Manager versions 9.1, 9.2, and 9.3 and is described as a Remote Access Control Bypass that could allow manipulation of data stored during another user’s CheckIn request. The connected records (RH, NVD, NVD duplicates) confirm the affected produ...
CVE-2002-1469
scponly does not properly verify the path when finding the 1 scp or 2 sftp-server programs, which could allow remote authenticated users to bypass access controls by uploading malicious programs and modifying the PATH variable in $HOME/.ssh/environment to locate those programs...