Trustport Webfilter version 5.5.0.2232 suffers from a remote file disclosure and traversal vulnerability.
0a40dc9d70c4a31728c655ee319583daaaf44b92e79022f423a8adb2d1a6e46fDr. Web Control Center version 6.00.3.201111300 suffers from a persistent script injection vulnerability.
851dfd59c6d9101c9e8c052a49bf2565ed6031d9562a93e808d4c5f2aacb003bThe GFI WebMonitor administrative interface suffers from a remote script code injection vulnerability.
e759d7240347b5d2e90c6c08c5d87afae48474ff41901286e4df0ca8ca2ec635MailScan for Mail Servers version 5.6.a suffers from directory traversal, authentication bypass, cross site scripting, and log file access vulnerabilities.
c252c1c307e05192c2fa09056a415178873dda926f748575fc4b8f2e466329e4BitDefender Update Server suffers from an unauthorized remote file access vulnerability.
918986bcb93a54dd1f20ca692a334a4d43b9bba73d9c0de82eaf87a258137b3dSymantec Vulnerability Research SYMSA-2007-015 - The Perforce P4Web is susceptible to a denial of service condition via resource starvation.
bfe8c04d73a7f234220539b93e7b249fa18b8c376a21250a1acd6cd0e84a2e1aSecurityReporter version 4.6.3 from Secure Computing suffers from an authentication bypass and directory traversal vulnerability.
f4901ba96169fe7851bc008d68821446e8d148ac28c43703ca3180cbe68dbde8Symantec Vulnerability Research SYMSA-2007-001 - The Oracle Application Server 10g suffers from a directory traversal vulnerability.
b2877b66402d60e70bebcf50d049de5b052477fe35e40aa495fd01e59ae59210Symantec Vulnerability Research SYMSA-2006-011 - It is possible to create administrative user accounts for the 2X ThinClientServer Enterprise Edition application version v3_sp2-r1865, without authentication.
0b20dc6a5747b7d1595d32a280c3108fa476180eb6215be3cc53079268159e99Symantec Vulnerability Research SYMSA-2006-011 - JBoss web server version 1.0.0.GA suffers from a directory traversal flaw.
4d939dbe83ac072089db652ef8ee016cd4030be72fcd99f8260e02f9fe2b6a5eSymantec Security Advisory - A connection from a SAP-DB/MaxDB WebDBM Client to the DBM Server causes a buffer overflow when the given database name is too large. This can result in the execution of arbitrary code in the context of the database server. Affected version is SAP-DB/MaxDB 7.6.00.22.
f252047e0f68c231dc50e1773e17de6610f34d7f5aae0c80053dedb4165a40e1Apache Geronimo version 1.0 suffers from cross site scripting vulnerabilities.
a7abdcc2cf2d5a7466c234929075a4549954e4fd37dc2826b8144ae0ebd188fdAstaro Security Linux 6.0.0.1 suffers from several vulnerabilities.
23dc7633c5a9b447fdb1049d7a5414bb229327bbae59eb7b99df53cbe0999110Blue Coat Reporter 7.1.1.1 suffers from privilege escalation, HTML injection, and cross site scripting flaws.
0e820990b63dcfc03f6876ce9d4006e72b5302f20bb062b66e2d40e08bccc29bSonicWall SOHO/10 is susceptible to cross site scripting and code injection vulnerabilities.
06bc402c479c99c44a13367479854e9e58af2512080f1d73de4ff209156ce293WebWasher Classic has a design flaw weakness where the CONNECT method allows remote attackers to connect to any server listening on the localhost interface of the proxy server.
2a29f5edeac813ac66ecbdbee56a1015c23933d41ef1785125f74e1a02901cf6Apache Jakarta Tomcat version 5.5.6 is susceptible to cross site scripting attacks.
27105001fc27f96aa1eb4a7805155ca4e01d73ebea5c3512a754a06980fd505eF-Secure Policy Manager has a path disclosure vulnerability when being fed a malformed URL.
d7607bd9f5edb9970bab1a1ea1cc4f470f0a88d34e627d489fc8f58359c9228cSambar Server version 6.x has been found susceptible to directory traversal, direct file access, and cross site scripting attacks
5467d07e39bee02ec5cbf79f55db0f1dbd67f3df5968037eed86cdcbd00981a4Appfoundry Message Foundry version 2.75.0003 is susceptible to a denial of service attack when an HTTP GET request for /com1 is passed to the server.
6fa96862a7762879110943f732fe540c79262e37ea1324de738b481659707844Aldo's web server version 1.5 on Windows is susceptible to path disclosure and pathetic directory traversal attack that allows for remote access to any file on the system.
639a5b9daeec5ce3fedb73bbc100d9733a8a0a3dfedccdc525198e2cf000b64eWebTrends Reporting Center is administrated via a web interface that has a flaw which would allow a remote attacker to disclose the physical path to the application.
ceeeb73740ef5d6595ffe3b3bcfebbaa1bd0e01644d2b67237781bafd0e4eec4A cross site scripting vulnerability still exists in the newest Bajie HTTP server release even though the vendor had previously been notified of the problem.
afd73509b2de1d74bbb351c867f4a67c715af98358cb09eecca456e2cef6a03e
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed