31 matches found
EUVD-2011-3643
Malware in sbrugna...
EUVD-2010-1345
Malware in sbrugna...
EUVD-2011-3644
Malware in sbrugna...
CVE-2011-3684
Multiple cross-site scripting XSS vulnerabilities in Tembria Server Monitor before 6.0.5 Build 2252 allow remote attackers to inject arbitrary web script or HTML via 1 the siteid parameter to logbook.asp, 2 the siteid parameter to monitor-events.asp, 3 the siteid parameter to...
CVE-2011-3685
Tembria Server Monitor before 6.0.5 Build 2252 uses a substitution cipher to encrypt application credentials, which allows local users to obtain sensitive information by leveraging read access to 1 authentication.dat or 2 XML files in the Exports directory...
CVE-2010-1316
Multiple stack-based buffer overflows in Tembria Server Monitor before 5.6.1 allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted 1 GET, 2 PUT, or 3 HEAD request, as demonstrated by a malformed GET request containing a long PATHINFO to...
Tembria Server Monitor Denial of Service (CVE-2010-1316)
A buffer overflow vulnerability has been reported in Tembria Server Monitor. The vulnerability is due to unknown function of the file index.asp. The manipulation with an unknown input leads to a buffer overflow vulnerability...
Tembria Server Monitor 5.6.0 - Denial of Service
No description provided by source. !/usr/bin/python Exploit Title : Tembria Server Monitor 5.6.0 CVE-ID : CVE-2010-1316 Date : April 9, 2010 Author : Lincoln Software Link : http://www.tembria.com/ Version : 5.6.0 OS : Windows Tested on : XP SP3 En VirtualBox Type of vuln : Remote DoS Greetz to :...
Tembria Server Multiple Cross-Site Scripting and Information Disclosure Vulnerabilities
The host is running Tembria Server Monitor and is prone to cross-site scripting and information disclosure vulnerabilities. OpenVAS Vulnerability Test $Id: secpodtembriaservermultxssninfodiscvuln.nasl 7052 2017-09-04 11:50:51Z teissa $ Tembria Server Multiple Cross-Site Scripting and Information...
Tembria Server Multiple Cross-Site Scripting and Information Disclosure Vulnerabilities
Tembria Server Monitor is prone to cross-site scripting and information disclosure vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
CVE-2011-3684
Multiple cross-site scripting XSS vulnerabilities in Tembria Server Monitor before 6.0.5 Build 2252 allow remote attackers to inject arbitrary web script or HTML via 1 the siteid parameter to logbook.asp, 2 the siteid parameter to monitor-events.asp, 3 the siteid parameter to...
CVE-2011-3685
Tembria Server Monitor before 6.0.5 Build 2252 uses a substitution cipher to encrypt application credentials, which allows local users to obtain sensitive information by leveraging read access to 1 authentication.dat or 2 XML files in the Exports directory...
Directory traversal
Tembria Server Monitor before 6.0.5 Build 2252 uses a substitution cipher to encrypt application credentials, which allows local users to obtain sensitive information by leveraging read access to 1 authentication.dat or 2 XML files in the Exports directory...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Tembria Server Monitor before 6.0.5 Build 2252 allow remote attackers to inject arbitrary web script or HTML via 1 the siteid parameter to logbook.asp, 2 the siteid parameter to monitor-events.asp, 3 the siteid parameter to...
CVE-2011-3684
Tembria Server Monitor is affected by multiple XSS vulnerabilities (CVE-2011-3684) prior to version 6.0.5 Build 2252. The flaws allow remote attackers to inject arbitrary script/HTML via numerous parameters (e.g., siteid in logbook.asp, monitor-events.asp, reports-config-by-device.asp, and others...
CVE-2011-3684
Multiple cross-site scripting XSS vulnerabilities in Tembria Server Monitor before 6.0.5 Build 2252 allow remote attackers to inject arbitrary web script or HTML via 1 the siteid parameter to logbook.asp, 2 the siteid parameter to monitor-events.asp, 3 the siteid parameter to...
CVE-2011-3685
Tembria Server Monitor before 6.0.5 Build 2252 uses a substitution cipher to encrypt application credentials, which allows local users to obtain sensitive information by leveraging read access to 1 authentication.dat or 2 XML files in the Exports directory...
Tembria Server Monitor security vulnerability
Weak cryptography, crossite scripting...
Tembria Server Monitor Weak Cryptographic Password Storage Vulnerability
Tembria Server Monitor Weak Cryptographic Password Storage Vulnerability Solutionary ID: SERT-VDN-1004 Solutionary Disclosure URL: http://www.solutionary.com/index/SERT/Vuln-Disclosures/Tembria-Server-Monitor-Weak-Xpto-Pwd-Storage.html CVE ID: Pending Product: Tembria Server Monitor Application...
Tembria Server Monitor < 5.6.1 Denial of Service
The remote host is running a version of Tembria Server Monitor earlier than 5.6.1. Such versions are reportedly affected by a buffer overflow vulnerability when handling specially crafted HTTP requests. An attacker, exploiting this flaw, could crash the affected service. C Tenable Network Securit...