21 matches found
EUVD-2013-1650
Malware in sbrugna...
EUVD-2013-1648
Malware in sbrugna...
EUVD-2013-1649
Malware in sbrugna...
EUVD-2006-3069
Malware in sbrugna...
CVE-2013-1615
The management console aka Java console on the Symantec Security Information Manager SSIM appliance 4.7.x and 4.8.x before 4.8.1 allows remote attackers to obtain sensitive information via unspecified web-GUI API calls...
CVE-2013-1614
Multiple cross-site scripting XSS vulnerabilities in the management console aka Java console on the Symantec Security Information Manager SSIM appliance 4.7.x and 4.8.x before 4.8.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2013-1613
SQL injection vulnerability in the management console aka Java console on the Symantec Security Information Manager SSIM appliance 4.7.x and 4.8.x before 4.8.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...
Cross-Site Scripting Vulnerability in Multiple IBM Products
IBM QRadar Security Information and Event Manager SIEM is a U.S.-based IBM solution that consolidates log-sourced event data from thousands of devices and applications dispersed throughout the network. A cross-site scripting vulnerability exists in multiple IBM products. An attacker could exploit...
IBM QRadar Security Information and Event Manager Denial of Service Vulnerability
IBM QRadar Security Information and Event Manager is a solution that consolidates log-sourced event data from thousands of devices and applications dispersed throughout the network. A security vulnerability exists in IBM QRadar Security Information and Event Manager, which can be exploited by...
IBM QRadar Security Information and Event Manager Unspecified Command Injection Vulnerability
IBM QRadar Security Information and Event Manager SIEM is a U.S.-based IBM solution that consolidates log-sourced event data from thousands of devices and applications dispersed throughout the network. A command injection vulnerability exists in IBM QRadar SIEM version 7.2.x and 7.1 MR2 Patch 1...
CVE-2013-1615
The management console aka Java console on the Symantec Security Information Manager SSIM appliance 4.7.x and 4.8.x before 4.8.1 allows remote attackers to obtain sensitive information via unspecified web-GUI API calls...
CVE-2013-1614
Multiple cross-site scripting XSS vulnerabilities in the management console aka Java console on the Symantec Security Information Manager SSIM appliance 4.7.x and 4.8.x before 4.8.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Design/Logic Flaw
The management console aka Java console on the Symantec Security Information Manager SSIM appliance 4.7.x and 4.8.x before 4.8.1 allows remote attackers to obtain sensitive information via unspecified web-GUI API calls...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the management console aka Java console on the Symantec Security Information Manager SSIM appliance 4.7.x and 4.8.x before 4.8.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Sql injection
SQL injection vulnerability in the management console aka Java console on the Symantec Security Information Manager SSIM appliance 4.7.x and 4.8.x before 4.8.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...
CVE-2013-1615
The CVE affects Symantec SSIM Appliance’s management/Java console (versions 4.7.x and 4.8.x prior to 4.8.1). It allows remote attackers to obtain sensitive information via unspecified web-GUI API calls, resulting in an information disclosure vulnerability. Remediation cited in sources is upgradin...
CVE-2013-1614
Multiple cross-site scripting XSS vulnerabilities in the management console aka Java console on the Symantec Security Information Manager SSIM appliance 4.7.x and 4.8.x before 4.8.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Symantec Security Information Manager Console Security Issues
SUMMARY Symantec's Security Information Manager SSIM management console is susceptible to multiple security issues. Successful exploitation could result in potential cookie stealing, session hijacking, unauthorized disclosure of sensitive application information and potential for unauthorized...
CVE-2006-3072
M4 Macro Library in Symantec Security Information Manager before 4.0.2.29 HOTFIX 1 allows local users to execute arbitrary commands via crafted "rule definitions", which produces dangerous Java code during M4 transformation...
CVE-2006-3072
M4 Macro Library in Symantec Security Information Manager before 4.0.2.29 HOTFIX 1 allows local users to execute arbitrary commands via crafted "rule definitions", which produces dangerous Java code during M4 transformation...