7 matches found
EUVD-2014-3028
Malware in sbrugna...
CVE-2014-3006
Sitepark Information Enterprise Server IES 2.9 before 2.9.6, when upgraded from an earlier version, does not properly restrict access, which allows remote attackers to change the manager account password and obtain sensitive information via a request to install/...
Design/Logic Flaw
Sitepark Information Enterprise Server IES 2.9 before 2.9.6, when upgraded from an earlier version, does not properly restrict access, which allows remote attackers to change the manager account password and obtain sensitive information via a request to install/...
CVE-2014-3006
Sitepark Information Enterprise Server IES 2.9 before 2.9.6, when upgraded from an earlier version, does not properly restrict access, which allows remote attackers to change the manager account password and obtain sensitive information via a request to install/...
CVE-2014-3006
CVE-2014-3006 affects Sitepark Information Enterprise Server (IES) versions 2.9 up to 2.9.6. When upgrading from a prior version, the installer portion at /ies/install could remain exposed, enabling unauthenticated remote attackers to reset the manager password and view sensitive installation dat...
Sitepark Information Enterprise Server unauthorized access
Unauthorized access during update...
LSE Leading Security Experts GmbH - LSE-2014-04-10 - Sitepark IES - Unauthenticated Access
=== LSE Leading Security Experts GmbH - Security Advisory 2014-04-10 === Sitepark Information Enterprise Server IES - Unauthenticated Access --------------------------------------------------------------------- Affected Versions ================= Information Enterprise Server IES Version 2.9 unti...