16 matches found
EUVD-2007-3449
Malware in sbrugna...
EUVD-2007-3447
Malware in sbrugna...
CheckPoint/Sofaware Firewall Multiple Vulnerabilities
No description provided by source. ProCheckUp Research http://procheckup.com/procheckup-labs/pr11-07.aspx PR11-07 Multiple peristent XSS, XSS, XSRF, offsite redirection and information disclosure flaws within CheckPoint/Sofaware firewalls Vulnerability found: 3rd May 2011 Vendor informed: 20th Ju...
Checkpoint SofaWare firewalls security vulnerabilities
Crossite scripting, information leakage, crossite reqiests forgery, request redirections...
PR11-07 Multiple peristent XSS, XSS, XSRF, offsite redirection and information disclosure flaws within CheckPoint/Sofaware firewalls
ProCheckUp Research http://procheckup.com/procheckup-labs/pr11-07.aspx PR11-07 Multiple peristent XSS, XSS, XSRF, offsite redirection and information disclosure flaws within CheckPoint/Sofaware firewalls Vulnerability found: 3rd May 2011 Vendor informed: 20th July 2011 Vulnerability fixed: 16th...
CheckPointSofaware Firewall - Multiple Vulnerabilities
CheckPointSofaware Firewall - Multiple Vulnerabilities ProCheckUp Research http://procheckup.com/procheckup-labs/pr11-07.aspx PR11-07 Multiple peristent XSS, XSS, XSRF, offsite redirection and information disclosure flaws within CheckPoint/Sofaware firewalls Vulnerability found: 3rd May 2011 Vend...
CheckPoint / Sofaware Firewall XSS / CSRF / Redirection / Disclosure
CheckPoint/Sofaware firewalls suffer from redirection, cross site request forgery, cross site scripting, and information disclosure vulnerabilities. Multiple peristent XSS, XSS, XSRF, offsite redirection and information disclosure flaws within CheckPoint/Sofaware firewalls Vulnerability found: 3r...
Check Point多域管理/Provider-1文件覆盖漏洞
CVE ID:CVE-2011-2664 Check Point Provider-1是一款安全管理解决方案,用来满足具有复杂安全策略需求企业的可扩展性要求。 Check Point多域管理/Provider-1存在未明错误,允许攻击者覆盖任意文件或修改SofaWare 管理服务器配置。 Check Point Provider-1 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息:...
CVE-2007-3465
Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, has a certain default password...
CVE-2007-3462
Cross-site request forgery CSRF vulnerability in Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, allows remote attackers to execute commands as arbitrary users, and disable firewalling of the protected network...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, allows remote attackers to execute commands as arbitrary users, and disable firewalling of the protected network...
Default credentials
Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, has a certain default password...
CVE-2007-3462
Cross-site request forgery CSRF vulnerability in Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, allows remote attackers to execute commands as arbitrary users, and disable firewalling of the protected network...
CVE-2007-3465
Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, has a certain default password...
CVE-2007-3462
CVE-2007-3462 describes a Cross-site request forgery (CSRF) vulnerability in Check Point SofaWare Safe@Office. The affected component: Safe@Office firmware prior to Embedded NGX 7.0.45 GA. Impact per the descriptions: remote attackers could execute commands as arbitrary users and disable firewall...
CVE-2007-3464
The CVE-2007-3464 entry concerns Check Point SofaWare Safe@Office (firmware before Embedded NGX 7.0.45 GA). The underlying issue is that the admin password change does not require the old password, enabling potential privilege escalation via CSRF attacks or similar vectors on an unattended workst...