CVE-2005-10001

CVE-2005-10001 affects Broadcom/Netegrity SiteMinder up to version 4.5.1. The vulnerability lies in the Login component, specifically the file /siteminderagent/pwcgi/smpwservicescgi.exe, where manipulation of the target argument causes an open redirect. Public exploit details exist. The documenta...

CVE-2005-10001 Netegrity SiteMinder Login smpwservicescgi.exe redirect

A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redirect. The exploit has been disclosed to the...

PT-2022-7717 · Netegrity · Netegrity Siteminder

Name of the Vulnerable Software and Affected Versions: Netegrity SiteMinder versions up to 4.5.1 Description: A critical issue was found in the Login component, specifically affecting the file /siteminderagent/pwcgi/smpwservicescgi.exe. The manipulation of the target argument leads to an open...

CVE-2005-2204

Cross-site scripting XSS vulnerability in Computer Associates CA eTrust SiteMinder 5.5, when the "CSSChecking" parameter is set to "NO," allows remote attackers to inject arbitrary web script or HTML via the 1 PASSWORD or 2 BUFFER parameters to smpwservicescgi.exe, 3 the TARGET parameter to...

SiteMinder 5.5 Multiple Script XSS

The remote host is running SiteMinder, an access-management solution from Netegrity / Computer Associates. The installed version of SiteMinder suffers from several cross-site scripting flaws in its 'smpwservicescgi.exe' and 'login.fcc' scripts. An attacker can exploit these flaws to inject...