15 matches found
EUVD-2007-3450
Malware in sbrugna...
EUVD-2007-3449
Malware in sbrugna...
Multiple vulnerabilities in Web GUI of UTM-1 Edge, Safe@Office and ZoneAlarm appliances
...
VPN connectivity failure when Edge/Safe@Office device connects to a R75.20 gateway having "download configuration" settings enabled
...
CVE-2007-3464
Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, does not require entry of the old password when changing the admin password, which might allow attackers to gain privileges by conducting a CSRF attack, making a password change on an unattended workstation, or other...
CVE-2007-3465
Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, has a certain default password...
Cross site request forgery (csrf)
Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, does not require entry of the old password when changing the admin password, which might allow attackers to gain privileges by conducting a CSRF attack, making a password change on an unattended workstation, or other...
CVE-2007-3462
Cross-site request forgery CSRF vulnerability in Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, allows remote attackers to execute commands as arbitrary users, and disable firewalling of the protected network...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, allows remote attackers to execute commands as arbitrary users, and disable firewalling of the protected network...
Default credentials
Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, has a certain default password...
CVE-2007-3462
CVE-2007-3462 describes a Cross-site request forgery (CSRF) vulnerability in Check Point SofaWare Safe@Office. The affected component: Safe@Office firmware prior to Embedded NGX 7.0.45 GA. Impact per the descriptions: remote attackers could execute commands as arbitrary users and disable firewall...
CVE-2007-3465
CVE-2007-3465 affects Check Point SofaWare Safe@Office. The vulnerability exists in firmware prior to Embedded NGX 7.0.45 GA and is associated with a default password, enabling likely unauthorized access with network access. The provided sources describe the affected product and condition (defaul...
CVE-2007-3464
The CVE-2007-3464 entry concerns Check Point SofaWare Safe@Office (firmware before Embedded NGX 7.0.45 GA). The underlying issue is that the admin password change does not require the old password, enabling potential privilege escalation via CSRF attacks or similar vectors on an unattended workst...
CVE-2007-3464
Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, does not require entry of the old password when changing the admin password, which might allow attackers to gain privileges by conducting a CSRF attack, making a password change on an unattended workstation, or other...
Calyptix Security Advisory CX-2007-04 - Cross-Site Request Forgery Attack Against Check Point Safe@Office Device
Calyptix Security Advisory CX-2007-04 Cross-Site Request Forgery Attack Against Check Point Safe@Office Device Date: 06/26/2007 http://www.calyptix.com/ http://labs.calyptix.com/CX-2007-04.php http://labs.calyptix.com/CX-2007-04.txt Overview Multiple versions of Check Point's Safe@Office UTM devi...