13 matches found
CVE-2011-0756
The application server in Trustwave WebDefend Enterprise before 5.0 uses hardcoded console credentials, which makes it easier for remote attackers to read security-event data by using the remote console GUI to connect to the management port...
EUVD-2011-0768
Malware in sbrugna...
EUVD-2011-1904
Malware in sbrugna...
CVE-2011-1906
Trustwave WebDefend Enterprise before 5.0 7.01.903-1.4 stores specific user-account credentials in a MySQL database, which makes it easier for remote attackers to read the event collection table via requests to the management port, a different vulnerability than CVE-2011-0756...
AjaXplorer 1.0 - Multiple Vulnerabilities
Trustwave SpiderLabs Security Advisory TWSL2013-027: Multiple Vulnerabilities in AjaXplorer Published: 09/05/13 Version: 1.0 Vendor: AjaXplorer http://ajaxplorer.info Product: AjaXplorer Version affected: 5.0.2 and prior Product description: AjaXplorer is an open source file sharing platform whic...
Trustwave WebDefend Enterprise多个信息泄露漏洞
Bugtraq ID: 47829 CVE ID:CVE-2011-0756 Trustwave WebDefend是一款WEB应用防火墙。 -WebDefend使用的MySQL数据使用了静态的用户名和密码,此用户账户提供对事件收集表的访问,其中包括IP和URL信息。此表中其他数据以加密形式存在。要执行此操作需要访问应用设备管理端口CVE-2011-1906。 -WebDefend使用瘦客户端与应用程序服务器通信,WebDefend Enterprise...
CVE-2011-1906
Trustwave WebDefend Enterprise before 5.0 7.01.903-1.4 stores specific user-account credentials in a MySQL database, which makes it easier for remote attackers to read the event collection table via requests to the management port, a different vulnerability than CVE-2011-0756...
Design/Logic Flaw
Trustwave WebDefend Enterprise before 5.0 7.01.903-1.4 stores specific user-account credentials in a MySQL database, which makes it easier for remote attackers to read the event collection table via requests to the management port, a different vulnerability than CVE-2011-0756...
CVE-2011-1906
Trustwave WebDefend Enterprise before 5.0 7.01.903-1.4 stores specific user-account credentials in a MySQL database, enabling remote attackers to read the event collection table via the management port. This is a separate issue from CVE-2011-0756, which involves hardcoded console credentials. The...
CVE-2011-1906
Trustwave WebDefend Enterprise before 5.0 7.01.903-1.4 stores specific user-account credentials in a MySQL database, which makes it easier for remote attackers to read the event collection table via requests to the management port, a different vulnerability than CVE-2011-0756...
CVE-2011-0756
The application server in Trustwave WebDefend Enterprise before 5.0 uses hardcoded console credentials, which makes it easier for remote attackers to read security-event data by using the remote console GUI to connect to the management port...
CVE-2011-0756
Trustwave WebDefend Enterprise before 5.0 uses hardcoded console credentials in the application server, allowing remote attackers to connect via the management port through the remote console GUI and read security-event data. The linked Red Hat advisory confirms the same issue as CVE-2011-0756, a...
CVE-2011-0756
The application server in Trustwave WebDefend Enterprise before 5.0 uses hardcoded console credentials, which makes it easier for remote attackers to read security-event data by using the remote console GUI to connect to the management port...