33 matches found
EUVD-2011-3643
Malware in sbrugna...
EUVD-2010-1345
Malware in sbrugna...
EUVD-2011-3644
Malware in sbrugna...
CVE-2011-3684
Multiple cross-site scripting XSS vulnerabilities in Tembria Server Monitor before 6.0.5 Build 2252 allow remote attackers to inject arbitrary web script or HTML via 1 the siteid parameter to logbook.asp, 2 the siteid parameter to monitor-events.asp, 3 the siteid parameter to...
CVE-2011-3685
Tembria Server Monitor before 6.0.5 Build 2252 uses a substitution cipher to encrypt application credentials, which allows local users to obtain sensitive information by leveraging read access to 1 authentication.dat or 2 XML files in the Exports directory...
CVE-2010-1316
Multiple stack-based buffer overflows in Tembria Server Monitor before 5.6.1 allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted 1 GET, 2 PUT, or 3 HEAD request, as demonstrated by a malformed GET request containing a long PATHINFO to...
Tembria Server Monitor Denial of Service (CVE-2010-1316)
A buffer overflow vulnerability has been reported in Tembria Server Monitor. The vulnerability is due to unknown function of the file index.asp. The manipulation with an unknown input leads to a buffer overflow vulnerability...
Tembria Server Monitor 5.6.0 - Denial of Service
No description provided by source. !/usr/bin/python Exploit Title : Tembria Server Monitor 5.6.0 CVE-ID : CVE-2010-1316 Date : April 9, 2010 Author : Lincoln Software Link : http://www.tembria.com/ Version : 5.6.0 OS : Windows Tested on : XP SP3 En VirtualBox Type of vuln : Remote DoS Greetz to :...
Tembria Server Multiple Cross-Site Scripting and Information Disclosure Vulnerabilities
The host is running Tembria Server Monitor and is prone to cross-site scripting and information disclosure vulnerabilities. OpenVAS Vulnerability Test $Id: secpodtembriaservermultxssninfodiscvuln.nasl 7052 2017-09-04 11:50:51Z teissa $ Tembria Server Multiple Cross-Site Scripting and Information...
Tembria Server Multiple Cross-Site Scripting and Information Disclosure Vulnerabilities
Tembria Server Monitor is prone to cross-site scripting and information disclosure vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
CVE-2011-3684
Multiple cross-site scripting XSS vulnerabilities in Tembria Server Monitor before 6.0.5 Build 2252 allow remote attackers to inject arbitrary web script or HTML via 1 the siteid parameter to logbook.asp, 2 the siteid parameter to monitor-events.asp, 3 the siteid parameter to...
CVE-2011-3685
Tembria Server Monitor before 6.0.5 Build 2252 uses a substitution cipher to encrypt application credentials, which allows local users to obtain sensitive information by leveraging read access to 1 authentication.dat or 2 XML files in the Exports directory...
Directory traversal
Tembria Server Monitor before 6.0.5 Build 2252 uses a substitution cipher to encrypt application credentials, which allows local users to obtain sensitive information by leveraging read access to 1 authentication.dat or 2 XML files in the Exports directory...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Tembria Server Monitor before 6.0.5 Build 2252 allow remote attackers to inject arbitrary web script or HTML via 1 the siteid parameter to logbook.asp, 2 the siteid parameter to monitor-events.asp, 3 the siteid parameter to...
CVE-2011-3684
Tembria Server Monitor is affected by multiple XSS vulnerabilities (CVE-2011-3684) prior to version 6.0.5 Build 2252. The flaws allow remote attackers to inject arbitrary script/HTML via numerous parameters (e.g., siteid in logbook.asp, monitor-events.asp, reports-config-by-device.asp, and others...
CVE-2011-3684
Multiple cross-site scripting XSS vulnerabilities in Tembria Server Monitor before 6.0.5 Build 2252 allow remote attackers to inject arbitrary web script or HTML via 1 the siteid parameter to logbook.asp, 2 the siteid parameter to monitor-events.asp, 3 the siteid parameter to...
CVE-2011-3685
Tembria Server Monitor before 6.0.5 Build 2252 uses a substitution cipher to encrypt application credentials, which allows local users to obtain sensitive information by leveraging read access to 1 authentication.dat or 2 XML files in the Exports directory...
CVE-2011-3685
Tembria Server Monitor (before 6.0.5 Build 2252) is vulnerable due to a substitution cipher used to encrypt application credentials, enabling local users with read access to authentication.dat or exports XML files to obtain sensitive information. This CVE (CVE-2011-3685) affects the confidentiali...
Tembria Server Monitor security vulnerability
Weak cryptography, crossite scripting...
Tembria Server Monitor Weak Cryptographic Password Storage Vulnerability
Tembria Server Monitor Weak Cryptographic Password Storage Vulnerability Solutionary ID: SERT-VDN-1004 Solutionary Disclosure URL: http://www.solutionary.com/index/SERT/Vuln-Disclosures/Tembria-Server-Monitor-Weak-Xpto-Pwd-Storage.html CVE ID: Pending Product: Tembria Server Monitor Application...