what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 33 RSS Feed

Files from Richard Brain

First Active2007-04-07
Last Active2012-11-02
CheckPoint / SofaWare Firewall Vulnerability Research
Posted Nov 2, 2012
Authored by ProCheckUp, Richard Brain | Site procheckup.com

This paper is the result of various security assessments performed on several CheckPoint/SofaWare firewalls in both a controlled (computer lab) and production environments during several penetration tests. Several different CheckPoint/SofaWare firewall models were purchased for testing in their computer lab. By having full access to the target devices, it becomes possible to discover new vulnerabilities that could be missed during a standard unauthenticated penetration test.

tags | paper, vulnerability
SHA-256 | c35375f660fa53fbebaaebb25ec6173e990a9bc1e26ffd2917339ccfbf6a2454
CheckPoint/Sofaware Firewall XSS / CSRF / Redirection / Disclosure
Posted Nov 2, 2012
Authored by ProCheckUp, Richard Brain | Site procheckup.com

CheckPoint/Sofaware firewalls suffer from redirection, cross site request forgery, cross site scripting, and information disclosure vulnerabilities.

tags | exploit, vulnerability, xss, info disclosure, csrf
SHA-256 | 5ae76cdada41d919af4e21bd1b0d36824ad80b60a77057ebb204db615d421663
HP System Management Homepage Cross Site Scripting
Posted May 24, 2011
Authored by ProCheckUp, Richard Brain | Site procheckup.com

HP System Management Homepage suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2010-3283, CVE-2011-1537, CVE-2010-4112
SHA-256 | 99f2488279fb151519b0edb33eb7e2752234eacfbf392e7175fe011728ee9565
Mitel Audio And Web Conferencing 4.4.30 Cross Site Scripting
Posted May 17, 2011
Authored by ProCheckUp, Richard Brain | Site procheckup.com

Mitel Audio and Web Conferencing version 4.4.30 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, web, vulnerability, xss
SHA-256 | 89f24d51c3ff886d0bd19239c449f15af0c50c1c88a3ec85cd52c0e52a1fd8a2
KeyFax Response Management System 3.2.2.6 XSS / Information Disclosure
Posted May 10, 2011
Authored by ProCheckUp, Richard Brain | Site procheckup.com

KeyFax Response Management System version 3.2.2.6 suffers from cross site scripting and information disclosure vulnerabilities.

tags | exploit, vulnerability, xss, info disclosure
SHA-256 | a61a149c3434df8b6fdb5b0b31cf5a857eaa9a52d5b3e26a7f96a758867acfd8
BMC Dashboards 7.6.01 XSS / File Reading
Posted May 5, 2011
Authored by ProCheckUp, Richard Brain, Jan Fry | Site procheckup.com

BMC Dashboards version 7.6.01 suffers from cross site scripting and arbitrary file reading vulnerabilities.

tags | exploit, arbitrary, vulnerability, xss
SHA-256 | 94e598cb8a417f4029046945b2b6cbe27cca569b5151f8df4790880703c96972
BMC Remedy Knowledge Management 7.5.00 XSS / Bypass
Posted May 5, 2011
Authored by ProCheckUp, Richard Brain | Site procheckup.com

BMC Remedy Knowledge Management version 7.5.00 suffers from authentication bypass and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | d356dd4cf96a5d6f7f2a2ab438039bdf3b5378931ce917cdfbaf91429aab6d07
Adobe ColdFusion Cross Site Scripting
Posted Mar 16, 2011
Authored by ProCheckUp, Richard Brain | Site procheckup.com

Adobe ColdFusion suffers from multiple cross site scripting and information disclosure vulnerabilities in the administration console.

tags | exploit, vulnerability, xss, info disclosure
SHA-256 | d873c49e2d5b51031c48ef05bac08618d85d900ad26132a94d2342aa6e42ee80
WordPress Viva Thumbs Directory Traversal
Posted Dec 22, 2010
Authored by ProCheckUp, Richard Brain | Site procheckup.com

The WordPress Viva Thumbs add-on suffers from a directory traversal vulnerability.

tags | exploit
SHA-256 | e0129edf99ac555bc7e005155bad8318e57f383b886ea7b15325a3c2f6908bfb
BlogCFC Cross Site Scripting
Posted Dec 14, 2010
Authored by ProCheckUp, Richard Brain | Site procheckup.com

BlogCFC suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 4a5f358eaed72d5ca282ae8e50804475f5e28c6ce5892b58a294a6f1fbd50eca
Mura CMS 5.2.2085 Cross Site Scripting
Posted Dec 13, 2010
Authored by ProCheckUp, Richard Brain | Site procheckup.com

Mura CMS version 5.2.2085 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 9d4bb82fb22f559637164afc13054f172d012612b19b9a0b1fbc6c059f0d39aa
DotNetNuke CMS Cross Site Scripting
Posted Dec 4, 2010
Authored by ProCheckUp, Richard Brain | Site procheckup.com

DotNetNuke CMS suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | e2cee82f66c17ce4cc491e556a580f9bf0bb2e17c96c5440ce18037d77ac55b8
ProCheckUp Security Advisory 2010.7
Posted Aug 13, 2010
Authored by ProCheckUp, Richard Brain | Site procheckup.com

The Adobe Coldfusion administration console suffers from a traversal vulnerability that allows for unauthenticated file retrieval.

tags | advisory
advisories | CVE-2010-2861
SHA-256 | 59cbe441b1cfdd493b736961317513e747a4567e06054074f35b525e6cd63aed
ProCheckUp Security Advisory 2009.16
Posted Jul 15, 2010
Authored by ProCheckUp, Richard Brain | Site procheckup.com

Procheckup has found by making a malformed request to the Juniper IVE Web interface without authentication, that a vanilla cross site scripting (XSS) attack is possible.

tags | exploit, web, xss
systems | juniper
SHA-256 | b19b3cf027c13feb0c9453befa1a1695ad3c71996e2d1625b3489dfef480afba
ProCheckUp Security Advisory 2009.17
Posted Jun 12, 2010
Authored by ProCheckUp, Richard Brain | Site procheckup.com

There are multiple authenticated Cross-site Scripting vulnerability on Junipers, IVE web interface. Procheckup has found by making a malformed authenticated request to the IVE Web interface, that vanilla cross site scripting (XSS) attacks are possible.

tags | advisory, web, xss
SHA-256 | 326494fa568636de33e0f91b5754e4162844799a25a06bf6b2e512036e7a8781
ProCheckUp Security Advisory 2010.3
Posted May 22, 2010
Authored by ProCheckUp, Richard Brain | Site procheckup.com

The Apache Axis2 administration console version 1.4.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | ed58940ac4538c0cd3fe086d4b9d9375b502074e41a4c5e2e8c33d83524a35ab
ProCheckUp Security Advisory 2010.2
Posted May 21, 2010
Authored by ProCheckUp, Richard Brain | Site procheckup.com

3Com's iMC (Intelligent Management Centre) provides professional management of 3Com and third party network devices, the IMC is normally accessed using a web browser over port 8080. Various IMC pages are vulnerable to a reflective XSS attack, including the login page. Various pages also disclose information including the SQL sa account password which might be used to assist in carrying out further attacks.

tags | exploit, web
SHA-256 | 14a0d934e67f92397613f7bba706a6ee6f5fb1c8d47058c1d6c0df0cd0fa51c2
ProCheckUp Security Advisory 2010.1
Posted May 21, 2010
Authored by ProCheckUp, Richard Brain | Site procheckup.com

3Com's iMC (Intelligent Management Centre) provides professional management of 3Com and third party network devices, the IMC is normally accessed using a web browser over port 8080. Procheckup has discovered that the IMC management console is vulnerable to an unauthenticated directory traversal attack within the reporting functionality.

tags | exploit, web
SHA-256 | 6192a54caa6b9d2367e3f0145e14d891d023f72d8b43f7842e66482213d45191
ProCheckUp Security Advisory 2009.19
Posted Jan 29, 2010
Authored by ProCheckUp, Richard Brain, Jan Fry | Site procheckup.com

CommonSpot Server suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | df67dfe5debcbb27e0fef223695bfa6598ccdaa78f99196c76f1ec8693d28f42
SAP BusinessObjects Cross Site Scripting
Posted Jan 27, 2010
Authored by Richard Brain | Site procheckup.com

SAP BusinessObjects version 12 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 085ac75868915cdcd505723a58a8951419e5f53a87bd76e3d537fde452b51eec
ProCheckUp Security Advisory 2009.15
Posted Jan 27, 2010
Authored by ProCheckUp, Richard Brain | Site procheckup.com

HP System Management

tags | exploit
SHA-256 | ddcc79a177acbbd59d6d2d079154c3d46d3fcfdbb7f16e567efe08e109ead8d5
Orion Application Server Cross Site Scripting
Posted Sep 10, 2009
Authored by Richard Brain | Site procheckup.com

The Orion application server version 2.0 through 2.0.8 suffer from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 785bd9d3ce450fcd5fded927dcadc6d6494e90bb158d98d343a0b0e06aff6208
Mod-Perl Perl-Status Cross Site Scripting
Posted Apr 15, 2009
Authored by Richard Brain | Site procheckup.com

The perl-status utility as included with Mod_perl suffers from a cross site scripting vulnerability.

tags | exploit, perl, xss
advisories | CVE-2009-0796
SHA-256 | de439bb421e77dc689929ce1ef77502f19c9bc54c7d2836c7d566630c8db74c5
ProCheckUp Security Advisory 2008.23
Posted Jan 30, 2009
Authored by ProCheckUp, Richard Brain | Site procheckup.com

Novell GroupWise WebAccess suffers from a cross site scripting vulnerability. Version 7.0.3 is affected.

tags | advisory, xss
advisories | CVE-2009-0273
SHA-256 | 8348d6de98893f1fbe8f491cb7e3dbf8a1f1b7c208a476cf8a27a8b3c4e972c9
ProCheckUp Security Advisory 2008.9
Posted Nov 19, 2008
Authored by ProCheckUp, Richard Brain | Site procheckup.com

An unauthenticated file retrieval vulnerability exists on the Sun Java System Identity Manager.

tags | advisory, java
SHA-256 | b9cdf1803245bb22824bf0f94a63052849f94ebcd387e642343d714cc5063316
Page 1 of 2
Back12Next

File Archive:

January 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    0 Files
  • 2
    Jan 2nd
    13 Files
  • 3
    Jan 3rd
    5 Files
  • 4
    Jan 4th
    5 Files
  • 5
    Jan 5th
    9 Files
  • 6
    Jan 6th
    5 Files
  • 7
    Jan 7th
    0 Files
  • 8
    Jan 8th
    0 Files
  • 9
    Jan 9th
    18 Files
  • 10
    Jan 10th
    31 Files
  • 11
    Jan 11th
    30 Files
  • 12
    Jan 12th
    33 Files
  • 13
    Jan 13th
    25 Files
  • 14
    Jan 14th
    0 Files
  • 15
    Jan 15th
    0 Files
  • 16
    Jan 16th
    7 Files
  • 17
    Jan 17th
    25 Files
  • 18
    Jan 18th
    38 Files
  • 19
    Jan 19th
    6 Files
  • 20
    Jan 20th
    21 Files
  • 21
    Jan 21st
    0 Files
  • 22
    Jan 22nd
    0 Files
  • 23
    Jan 23rd
    24 Files
  • 24
    Jan 24th
    68 Files
  • 25
    Jan 25th
    22 Files
  • 26
    Jan 26th
    20 Files
  • 27
    Jan 27th
    17 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close