322 matches found
Comcast DOCSIS 3.0 Business Gateways - Multiple Vulnerabilities
Comcast DOCSIS 3.0 Business Gateways - Multiple Vulnerabilities Trustwave's SpiderLabs Security Advisory TWSL2011-002: Vulnerabilities in Comcast DOCSIS 3.0 Business Gateways D3G-CCR https://www.trustwave.com/spiderlabs/advisories/TWSL2011-002.txt Published: 2011-02-04 Version: 1.0 Vendor: Comcas...
Comcast DOCSIS 3.0 Business Gateways XSRF / Session Management
Trustwave's SpiderLabs Security Advisory TWSL2011-001: Vulnerabilities in Comcast DOCSIS 3.0 Business Gateways SMCD3G-CCR https://www.trustwave.com/spiderlabs/advisories/TWSL2011-002.txt Published: 2011-02-04 Version: 1.0 Vendor: Comcast http://comcast.com and SMC http://www.smc.com Product:...
TWSL-2010-008: Clear iSpot/Clearspot CSRF Vulnerabilities
Trustwave's SpiderLabs Security Advisory TWSL2010-008: Clear iSpot/Clearspot CSRF Vulnerabilities https://www.trustwave.com/spiderlabs/advisories/TWSL2010-008.txt Published: 2010-12-10 Version: 1.0 Vendor: Clear http://www.clear.com http://www.clear.com/ Products: iSpot / ClearSpot 4G...
Clear iSpot/Clearspot 2.0.0.0 - Cross-Site Request Forgery
Trustwave's SpiderLabs Security Advisory TWSL2010-008: Clear iSpot/Clearspot CSRF Vulnerabilities https://www.trustwave.com/spiderlabs/advisories/TWSL2010-008.txt Published: 2010-12-10 Version: 1.0 Vendor: Clear http://www.clear.com Products: iSpot / ClearSpot 4G http://www.clear.com/devices...
Clear iSpotClearspot 2.0.0.0 - Cross-Site Request Forgery
Clear iSpotClearspot 2.0.0.0 - Cross-Site Request Forgery Trustwave's SpiderLabs Security Advisory TWSL2010-008: Clear iSpot/Clearspot CSRF Vulnerabilities https://www.trustwave.com/spiderlabs/advisories/TWSL2010-008.txt Published: 2010-12-10 Version: 1.0 Vendor: Clear http://www.clear.com...
Clear iSpot / Clearspot 2.0.0.0 Cross Site Request Forgery
Trustwave's SpiderLabs Security Advisory TWSL2010-008: Clear iSpot/Clearspot CSRF Vulnerabilities https://www.trustwave.com/spiderlabs/advisories/TWSL2010-008.txt Published: 2010-12-10 Version: 1.0 Vendor: Clear http://www.clear.com Products: iSpot / ClearSpot 4G http://www.clear.com/devices...
6) (Anti) social networking
Social networks like Facebook and Twitter are fabulous platforms for sharing information and news. Retailers of all stripes have tapped into this and are using them to get the word out – virally – about discounts, sales and in-store events. Unfortunately, mechanisms for vetting online reputation...
FreePBX <= 2.8.0 Arbitrary File Upload Vulnerability
FreePBX is prone to an arbitrary file upload vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Overlooked Old Vulnerabilities Lead to Major Data Breaches, Says TrustWave
A recent report suggests that focusing too much on new security threats might make companies overlook older, more commonly exploited vulnerabilities. The report by TrustWave is based on data from over 1,900 penetration tests and more than 200 data breach investigations for clients like American...
ToorCon: New Apps, Old Infrastructure Make Toxic Brew
In a variety of ways, experts at this weekend’s ToorCon Conference warned that the tidal wave of new devices and Web based services is straining an already aging Internet infrastructure, with privacy and security as the first victims. Call it the ‘schizophrenia of now’: a tidal wave of new...
TWSL2010-005: FreePBX recordings interface allows remote code execution
Trustwave's SpiderLabs Security Advisory TWSL2010-005: FreePBX recordings interface allows remote code execution https://www.trustwave.com/spiderlabs/advisories/TWSL2010-005.txt Published: 2010-09-23 Version: 1.0 Vendor: FreePBX http://www.freepbx.org/ Product: FreePBX and VOIP solutions...
FreePBX 2.8.0 - Recordings Interface Allows Remote Code Execution
FreePBX 2.8.0 - Recordings Interface Allows Remote Code Execution Trustwave's SpiderLabs Security Advisory TWSL2010-005: FreePBX recordings interface allows remote code execution https://www.trustwave.com/spiderlabs/advisories/TWSL2010-005.txt Published: 2010-09-23 Version: 1.0 Vendor: FreePBX...
FreePBX 2.8.0 - Recordings Interface Allows Remote Code Execution
Trustwave's SpiderLabs Security Advisory TWSL2010-005: FreePBX recordings interface allows remote code execution https://www.trustwave.com/spiderlabs/advisories/TWSL2010-005.txt Published: 2010-09-23 Version: 1.0 Vendor: FreePBX http://www.freepbx.org/ Product: FreePBX and VOIP solutions...
TWSL2010-003: Unauthorized access to root NFS export on EMC Celerra NAS appliance
Trustwave's SpiderLabs Security Advisory TWSL2010-003: Unauthorized access to root NFS export on EMC Celerra Network Attached Storage NAS appliance https://www.trustwave.com/spiderlabs/advisories/TWSL2010-003.txt Published: 2010-07-29 Version: 1.0 Vendor: EMC http://www.emc.com Product: Celerra...
EMC Celerra NAS Appliance - Unauthorized Access to Root NFS Export
EMC Celerra NAS Appliance - Unauthorized Access to Root NFS Export Trustwave's SpiderLabs Security Advisory TWSL2010-003: Unauthorized access to root NFS export on EMC Celerra Network Attached Storage NAS appliance https://www.trustwave.com/spiderlabs/advisories/TWSL2010-003.txt Published:...
EMC Celerra NAS Appliance - Unauthorized Access to Root NFS Export
Trustwave's SpiderLabs Security Advisory TWSL2010-003: Unauthorized access to root NFS export on EMC Celerra Network Attached Storage NAS appliance https://www.trustwave.com/spiderlabs/advisories/TWSL2010-003.txt Published: 2010-07-29 Version: 1.0 Vendor: EMC http://www.emc.com Product: Celerra...
VMSA-2010-0005:VMware products address vulnerabilities in WebAccess
VMSA-2010-0005 VMware products address vulnerabilities in WebAccess VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2010-0005 VMware Security Advisory Synopsis: VMware products address vulnerabilities in WebAccess VMware Security Advisory Issue date: 2010-03-29 VMware Security...
Trustwave's SpiderLabs Security Advisory TWSL2010-001
Trustwave's SpiderLabs Security Advisory TWSL2010-001: Multiplatform View State Tampering Vulnerabilities Published: 2010-02-08 Version: 1.1 SpiderLabs has documented view state tampering vulnerabilities in three products from separate vendors. View states are used by some web application...
Multiplatform View State Tampering
Trustwave's SpiderLabs Security Advisory TWSL2010-001: Multiplatform View State Tampering Vulnerabilities Published: 2010-02-08 Version: 1.1 SpiderLabs has documented view state tampering vulnerabilities in three products from separate vendors. View states are used by some web application...
Cisco ASA Web VPN Vulnerabilities
Trustwave's SpiderLabs Security Advisory TWSL2009-002: Cisco ASA Web VPN Multiple Vulnerabilities Published: 2009-06-24 Version: 1.0 Vendor: Cisco Systems, Inc. http://www.cisco.com Versions affected: 8.04, 8.1.2, and 8.2.1 Description: Cisco's Adaptive Security Appliance ASA provides a number of...