50 matches found
McAfee Agent Directory Traversal Vulnerability
McAfee Agent MA is a set of client components from McAfee, Inc. that provides secure communications between ePolicy Orchestrator antivirus management platform and managed products. A directory traversal vulnerability exists in the remote log viewing feature in versions 5.x prior to MA 5.0.2. A...
CVE-2015-7237
Directory traversal vulnerability in the remote log viewing functionality in McAfee Agent MA 5.x before 5.0.2 allows remote attackers to obtain sensitive information via unspecified vectors...
CVE-2015-7237
CVE-2015-7237 affects McAfee Agent (MA) 5.x prior to 5.0.2, where the remote log viewing feature is vulnerable to a directory traversal bug. The flaw could allow an attacker to obtain sensitive information via unspecified vectors in the remote logging UI/API. Affected component is the remote log ...
CVE-2015-7237
Directory traversal vulnerability in the remote log viewing functionality in McAfee Agent MA 5.x before 5.0.2 allows remote attackers to obtain sensitive information via unspecified vectors...
PT-2014-3494 · Red Hat · Red Hat Cloudforms
Name of the Vulnerable Software and Affected Versions: Red Hat CloudForms 3.0 Management Engine CFME version 5.x Description: The issue concerns the AgentController in Red Hat CloudForms 3.0 Management Engine CFME, where the get and log methods allow remote attackers to insert arbitrary text into...
rsyslog Long Tag Off-By-Two DoS
This module triggers an off-by-two overflow in the rsyslog daemon. This flaw is unlikely to yield code execution but is effective at shutting down a remote log daemon. This bug was introduced in version 4.6.0 and corrected in 4.6.8/5.8.5. Compiler differences may prevent this bug from causing any...
Fedora 7 : fail2ban-0.8.0-9.fc7 (2007-0621)
This update closes a remote log injection bug which could lead to a DOS attack. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
Design/Logic Flaw
OpenID allows remote attackers to forcibly log a user into an OpenID enabled site, divulge the user's personal information to this site, and add it site to the trusted sites list via a crafted web page, related to cached tokens...
CVE-2007-1652
OpenID allows remote attackers to forcibly log a user into an OpenID enabled site, divulge the user's personal information to this site, and add it site to the trusted sites list via a crafted web page, related to cached tokens...
Rapid 7 Advisory R7-0002: Alchemy Eye Remote Unauthenticated Log Viewing
-----BEGIN PGP SIGNED MESSAGE----- Rapid 7, Inc. Security Advisory Visit http://www.rapid7.com to download NeXposetm, our advanced vulnerability scanner. Linux and Windows 2000 versions are available now! Rapid 7 Advisory R7-0002: Alchemy Eye Remote Unauthenticated Log Viewing Published: November...