Lucene search
+L

9 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-3970

Malware in sbrugna...

5CVSS6.4AI score0.01716EPSS
Exploits1References7
nvd
nvd
added 2007/07/27 10:30 p.m.24 views

CVE-2007-4043

file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer before 4.6.3 allows remote attackers to bypass authentication via a name parameter ending with a "%00.gif" sequence. NOTE: a separate traversal vulnerability could be leveraged to download arbitrary files...

9.8CVSS6.9AI score0.01559EPSS
Exploits0References2
cvelist
cvelist
added 2007/07/27 10:0 p.m.24 views

CVE-2007-4043

file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer before 4.6.3 allows remote attackers to bypass authentication via a name parameter ending with a "%00.gif" sequence. NOTE: a separate traversal vulnerability could be leveraged to download arbitrary files...

6.9AI score0.01559EPSS
Exploits0References2
cve
cve
added 2007/07/27 10:0 p.m.54 views

CVE-2007-4043

CVE-2007-4043 affects Secure Computing SecurityReporter (aka Network Security Analyzer) prior to 4.6.3. A vulnerability allows remote attackers to bypass authentication via a name parameter ending with a “%00.gif” sequence, and a separate traversal vulnerability could be leveraged to download arb...

9.8CVSS6.9AI score0.01559EPSS
Exploits0References2Affected Software1
nvd
nvd
added 2007/07/25 6:30 p.m.23 views

CVE-2007-3986

file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer 4.6.3 allows remote attackers to bypass authentication via a name parameter that specifies the eventcache directory and a non-GIF file, which causes the $dontvalidate variable to be set to true. NOTE: a separate traversal...

5CVSS6.9AI score0.01716EPSS
Exploits1References6
prion
prion
added 2007/07/25 6:30 p.m.16 views

Authentication flaw

file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer 4.6.3 allows remote attackers to bypass authentication via a name parameter that specifies the eventcache directory and a non-GIF file, which causes the $dontvalidate variable to be set to true. NOTE: a separate traversal...

5CVSS7.2AI score0.01716EPSS
Exploits1References6Affected Software1
cvelist
cvelist
added 2007/07/25 6:0 p.m.27 views

CVE-2007-3985

Directory traversal vulnerability in file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer 4.6.3 allows remote attackers to download arbitrary files via a .. dot dot in the name parameter...

6.7AI score0.01913EPSS
Exploits1References8
cvelist
cvelist
added 2007/07/25 6:0 p.m.26 views

CVE-2007-3986

file.cgi in Secure Computing SecurityReporter aka Network Security Analyzer 4.6.3 allows remote attackers to bypass authentication via a name parameter that specifies the eventcache directory and a non-GIF file, which causes the $dontvalidate variable to be set to true. NOTE: a separate traversal...

6.9AI score0.01716EPSS
Exploits1References6
cve
cve
added 2007/07/25 6:0 p.m.45 views

CVE-2007-3985

The CVE-2007-3985 issue affects Secure Computing SecurityReporter (aka Network Security Analyzer) version 4.6.3, where the file.cgi script fails to sanitize the name parameter. This enables a directory traversal attack (".." in the name) allowing remote attackers to download arbitrary files from ...

5CVSS6.7AI score0.01913EPSS
Exploits1References8Affected Software1
Rows per page
Query Builder