8 matches found
EUVD-2003-0300
Malware in sbrugna...
Cisco IOS Software Processing of SAA Packets - Cisco Systems
The Service Assurance Agent SAA is the new name for the Response Time Reporter RTR feature. The router is vulnerable only if the RTR responder is enabled. When the router receives a malformed RTR packet, it will crash. RTR is disabled by default. There is no workaround short of disabling the RTR...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the web-based interface in IBM Metrica Service Assurance Framework allow remote authenticated users to inject arbitrary web script or HTML via 1 the elementid parameter in a generatedreportresults action to the ReportTree program, 2 the jnlpnam...
CVE-2008-5043
CVE-2008-5043 involves multiple cross-site scripting (XSS) flaws in the web-based interface of IBM Metrica Service Assurance Framework. The vulnerabilities allow remote authenticated users to inject arbitrary web script or HTML via three parameters: elementid in generatedreportresults (ReportTree...
IBM Tivoli Netcool Service Quality Manager - Cross-Site Scripting HTML Injection
IBM Tivoli Netcool Service Quality Manager - Cross-Site Scripting HTML Injection source: https://www.securityfocus.com/bid/32233/info IBM Tivoli Netcool Service Quality Manager is prone to multiple cross-site scripting and an HTML-injection vulnerability because it fails to sufficiently sanitize...
Metrica Service Assurance Multiple Cross Site Scripting
Metrica Service Assurance Multiple Cross Site Scripting Author: Francesco Bianchino Email: [email protected] Title: Metrica Service Assurance Multiple Cross Site Scripting Vendor: IBM Summary Metrica Service Assurance Framework implements a distributed, object-oriented, J2EE-based architectur...
CVE-2003-0305
The Service Assurance Agent SAA in Cisco IOS 12.0 through 12.2, aka Response Time Reporter RTR, allows remote attackers to cause a denial of service crash via malformed RTR packets to port 1967...
CVE-2003-0305
Cisco IOS SAA (formerly RTR) vulnerabilities affect IOS versions 12.0–12.2 where the Service Assurance Agent can crash when processing malformed Response Time Responder packets sent to UDP port 1967. The root cause is a malformed RTR packet causing a crash in the RTR/SAA path; exploitation requir...