EUVD-2010-3879

Malware in sbrugna...

CVE-2009-5008

Cisco Secure Desktop CSD, when used in conjunction with an AnyConnect SSL VPN server, does not properly perform verification, which allows local users to bypass intended policy restrictions via a modified executable file...

Code injection

The Mediation server in IPdiva SSL VPN Server 2.2 before 2.2.8.84 and 2.3 before 2.3.2.14 stores the number of remaining allowed login attempts in a cookie, which makes it easier for remote attackers to conduct brute force attacks by manipulating this cookie's value...

CVE-2008-0914

Multiple cross-site scripting XSS vulnerabilities in the Mediation server in IPdiva SSL VPN Server 2.2 before 2.2.8.84 and 2.3 before 2.3.2.14 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2008-0914

CVE-2008-0914 affects the Mediation server component of IPdiva SSL VPN Server, with versions 2.2 before 2.2.8.84 and 2.3 before 2.3.2.14 vulnerable to multiple XSS vulnerabilities. The vulnerability allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The connec...

CVE-2008-0915

The Mediation server in IPdiva SSL VPN Server 2.2 before 2.2.8.84 and 2.3 before 2.3.2.14 stores the number of remaining login attempts in a cookie, enabling remote attackers to perform brute-force attacks by manipulating the cookie value. Affected product: IPdiva SSL VPN Server (Mediation server...

CVE-2008-0914

Multiple cross-site scripting XSS vulnerabilities in the Mediation server in IPdiva SSL VPN Server 2.2 before 2.2.8.84 and 2.3 before 2.3.2.14 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2008-0915

The Mediation server in IPdiva SSL VPN Server 2.2 before 2.2.8.84 and 2.3 before 2.3.2.14 stores the number of remaining allowed login attempts in a cookie, which makes it easier for remote attackers to conduct brute force attacks by manipulating this cookie's value...