Lucene search
K

36 matches found

Tenable Nessus
Tenable Nessus
added 2015/04/24 12:0 a.m.37 views

F5 Networks BIG-IP : Linux kernel vulnerability (SOL16477)

The DNS resolution functionality in the CIFS implementation in the Linux kernel before 2.6.35, when CONFIGCIFSDFSUPCALL is enabled, relies on a user's keyring for the dnsresolver upcall in the cifs.upcall userspace helper, which allows local users to spoof the results of DNS queries and perform...

0.1AI score0.00423EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/11/28 12:0 a.m.46 views

F5 Networks BIG-IP : GNU C Library vulnerability (SOL15885)

The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a 'stack extension attack,' a related issue to...

10CVSS5.7AI score0.14323EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2014/10/10 12:0 a.m.55 views

F5 Networks BIG-IP : GnuTLS vulnerability (SOL15637)

The gnutlsciphertext2compressed function in lib/gnutlscipher.c in GnuTLS 2.12.23 allows remote attackers to cause a denial of service buffer over-read and crash via a crafted padding length. NOTE: this might be due to an incorrect fix for CVE-2013-0169. C Tenable Network Security, Inc. The...

5CVSS6.3AI score0.35584EPSS
Exploits1References3
NVD
NVD
added 2014/10/02 2:55 p.m.24 views

CVE-2014-7157

Cross-site scripting XSS vulnerability in Exinda WAN Optimization Suite 7.0.0 2160 allows remote attackers to inject arbitrary web script or HTML via the tabsel parameter to admin/launch...

4.3CVSS5.7AI score0.01854EPSS
Exploits3References4
NVD
NVD
added 2014/10/02 2:55 p.m.24 views

CVE-2014-7158

Cross-site request forgery CSRF vulnerability in Exinda WAN Optimization Suite 7.0.0 2160 allows remote attackers to hijack the authentication of administrators for requests that change the admin password via a request to admin/launch...

6.8CVSS7.2AI score0.01062EPSS
Exploits3References4
Prion
Prion
added 2014/10/02 2:55 p.m.21 views

Cross site scripting

Cross-site scripting XSS vulnerability in Exinda WAN Optimization Suite 7.0.0 2160 allows remote attackers to inject arbitrary web script or HTML via the tabsel parameter to admin/launch...

4.3CVSS6.1AI score0.01854EPSS
Exploits3References4Affected Software1
Prion
Prion
added 2014/10/02 2:55 p.m.12 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in Exinda WAN Optimization Suite 7.0.0 2160 allows remote attackers to hijack the authentication of administrators for requests that change the admin password via a request to admin/launch...

6.8CVSS7.7AI score0.01062EPSS
Exploits3References4Affected Software1
Cvelist
Cvelist
added 2014/10/02 2:0 p.m.32 views

CVE-2014-7157

Cross-site scripting XSS vulnerability in Exinda WAN Optimization Suite 7.0.0 2160 allows remote attackers to inject arbitrary web script or HTML via the tabsel parameter to admin/launch...

5.7AI score0.01854EPSS
Exploits3References4
Cvelist
Cvelist
added 2014/10/02 2:0 p.m.29 views

CVE-2014-7158

Cross-site request forgery CSRF vulnerability in Exinda WAN Optimization Suite 7.0.0 2160 allows remote attackers to hijack the authentication of administrators for requests that change the admin password via a request to admin/launch...

7.2AI score0.01062EPSS
Exploits3References4
CVE
CVE
added 2014/10/02 2:0 p.m.38 views

CVE-2014-7158

The CVE-2014-7158 entry concerns Exinda WAN Optimization Suite 7.0.0 (2160) and is a Cross-site request forgery (CSRF) vulnerability that could allow remote attackers to hijack an administrator’s session to perform actions such as changing the admin password via a request to /admin/launch. Public...

6.8CVSS7.4AI score0.01062EPSS
Exploits3References4Affected Software1
CVE
CVE
added 2014/10/02 2:0 p.m.40 views

CVE-2014-7157

The CVE-2014-7157 entry concerns Exinda WAN Optimization Suite 7.0.0 (2160) with a Cross-site scripting (XSS) vulnerability exposed via the tabsel parameter to /admin/launch. The affected component is the web interface; the root cause is lack of input validation for the tabsel parameter, enabling...

4.3CVSS5.8AI score0.01854EPSS
Exploits3References4Affected Software1
0day.today
0day.today
added 2014/09/28 12:0 a.m.46 views

Exinda WAN Optimization Suite 7.0.0 CSRF / XSS Vulnerabilities

Exinda WAN Optimization Suite version 7.0.0 2160 suffers from cross site request forgery and cross site scripting vulnerabilities. I. VULNERABILITY ------------------------- XSS Reflected vulnerabilities and CSRF in Exinda WAN Optimization Suite II. BACKGROUND ------------------------- WAN...

6.8CVSS6.4AI score0.01854EPSS
Exploits4
Packet Storm
Packet Storm
added 2014/09/27 12:0 a.m.44 views

Exinda WAN Optimization Suite 7.0.0 CSRF / XSS

I. VULNERABILITY ------------------------- XSS Reflected vulnerabilities and CSRF in Exinda WAN Optimization Suite II. BACKGROUND ------------------------- WAN Optimization Suite integrates enterprise-caliber bandwidth acceleration and optimization with best-in-class application network visibilit...

6.8CVSS0.4AI score0.01854EPSS
Exploits4
F5 Networks
F5 Networks
added 2013/07/05 12:0 a.m.34 views

K10905 : NTP vulnerability - CVE-2009-3563

Security Advisory Description Note: Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of F5...

6.4CVSS7.1AI score0.32288EPSS
Exploits3
Check Point Advisories
Check Point Advisories
added 2010/12/14 12:0 a.m.14 views

Microsoft Windows BranchCache Insecure Library Loading (MS10-095; CVE-2010-3966)

BranchCache is a wide area network WAN bandwidth optimization technology that is included in some editions of the Windows Server 2008 R2 and Windows 7 operating systems. To optimize WAN bandwidth, BranchCache copies content from your main office content servers and caches the content at branch...

9.3CVSS7.2AI score0.13186EPSS
Exploits0
F5 Networks
F5 Networks
added 2006/10/06 12:0 a.m.45 views

SOL2593 - Buffer overflow in zlib - CAN-2003-0107

Note: Versions that are not listed in this Solution have not been evaluated for vulnerability to this security advisory. For information about F5 Networks' security policy regarding evaluating older and unsupported versions of F5 Networks products, refer to SOL4602: Overview of F5 Networks securi...

7.5CVSS2.2AI score0.2554EPSS
Exploits1
Rows per page
Query Builder