the original cloud security
Showing 1 - 15 of 15 RSS Feed

Files

Tembria Server Monitor Cross Site Scripting
Posted Feb 15, 2011
Authored by Rob Kraus, Jose R. Hernandez | Site solutionary.com

Tembria Server Monitor suffers from multiple cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss
MD5 | 5eb079ae5593eae0d344572399df6e4e

Related Files

Vivint Sky Control Panel Unauthenticated Access
Posted Mar 2, 2016
Authored by Jeremy Scott

Vivint Sky Control Panel suffers from an unauthenticated access vulnerability.

tags | advisory
advisories | CVE-2014-8362
MD5 | becdb7e3ca89e9992af390d291e695be
D-Link DIR-601 Directory Traversal
Posted Jan 25, 2012
Authored by Rob Kraus | Site solutionary.com

D-Link DIR-601 suffers from a tftp related directory traversal vulnerability.

tags | advisory
MD5 | e834eb0071d2f83454670f7ea6966f65
NetSaro Enterprise Messenger Server Code Disclosure
Posted Aug 25, 2011
Authored by Rob Kraus | Site solutionary.com

A vulnerability exists in the NetSaro Enterprise Messenger Server Administration Console allowing a remote attacker to obtain unauthenticated access to the applications source code. Attackers may make HTTP GET requests and append a Null Byte to allow download of the source code for the applications web pages. An attacker does not need to authenticate to obtain access to source code for pages that usually require authentication prior to viewing.

tags | advisory, remote, web
MD5 | 7b49b43698a2dd6a893cb299575f393d
NetSaro Enterprise Messenger Server Plaintext Password Storage
Posted Aug 16, 2011
Authored by Rob Kraus | Site solutionary.com

A vulnerability exists in the NetSaro Enterprise Messenger Server application allowing an attacker to obtain access to plaintext usernames and passwords. The stored passwords are used to authenticate users running the NetSaro Enterprise Client connecting to the server. This is a second level attack that requires access to the password files stored within the application root directory. An attacker who has previously compromised the host operating system or gained direct access to the NetSaro.fdb database file found in the "NetSaro Enterprise ServerDb" directory can obtain the user credentials using readily available tools.

tags | advisory, root
MD5 | 39a2c7ea8cdcd4022bab807d3cda1e2d
NetSaro Enterprise Manager Server Weak Cryptographic Storage
Posted Aug 16, 2011
Authored by Rob Kraus | Site solutionary.com

A vulnerability exists in the NetSaro Enterprise Messenger Server application allowing an attacker to easily decrypt passwords used to authenticate to the application. The application implements Base64 encoding to obfuscate the values of plaintext passwords used for logging into the server administration console. This is a second level attack that requires access to the password files stored within the application root directory. An attacker who has previously compromised the host operating system or achieved direct access to the configuration.xml file found in the "NetSaro Enterprise Server" directory can obtain the encoded user credentials and decrypt them using readily available Base64 decoding tools.

tags | advisory, root
MD5 | e671904d60de6a02295bef5fe8e2846b
Foxit Reader Insecure Library Loading
Posted Jul 21, 2011
Authored by Rob Kraus | Site solutionary.com

Foxit Reader is vulnerable to a insecure library loading vulnerability. The libraries identified as being vulnerable are dwmapi.dll, dwrite.dll and msdrm.dll.

tags | advisory
MD5 | 5f49cb9b9c74f6824f344ca672e0d97b
PDFill PDF Editor 8.0 Insecure Library Loading
Posted Jun 9, 2011
Authored by Rob Kraus | Site solutionary.com

PDFill PDF Editor version 8.0 suffers from an insecure library loading vulnerability.

tags | advisory
MD5 | 706f0d7e7d5c625798c43a9f1540fd4f
CodeMeter WebAdmin 3.30 / 4.30 Cross Site Scripting
Posted Jun 1, 2011
Authored by Rob Kraus | Site solutionary.com

CodeMeter WebAdmin versions 3.30 and 4.30 suffer from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | b834b65b3c48ade728b6feab1dcc9e22
Sonexis ConferenceManager 9.2.11.0 / 9.3.14.0 Cross Site Scripting
Posted Apr 6, 2011
Authored by Rob Kraus | Site solutionary.com

Sonexis ConferenceManager versions 9.2.11.0 and 9.3.14.0 suffer from multiple cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss
MD5 | 7ce913cfff4bfb0876221f844c1b73a4
Sonexis ConferenceManager 9.3.14.0 SQL Injection
Posted Apr 6, 2011
Authored by Rob Kraus, Paul Petefish | Site solutionary.com

Sonexis ConferenceManager version 9.3.14.0 suffers from a remote SQL injection vulnerability.

tags | advisory, remote, sql injection
MD5 | 5562ddb1be442c059d610fff73f83ffe
Secunia Security Advisory 43355
Posted Mar 5, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities and a weakness have been reported in Tembria Server Monitor, which can be exploited by malicious, local users to disclose sensitive information and by malicious people to conduct cross-site scripting attacks.

tags | advisory, local, vulnerability, xss
MD5 | 67cadf7c3e6933dc5103d628fb8948ca
Tembria Server Monitor Weak Cryptographic Password Storage
Posted Feb 15, 2011
Authored by Rob Kraus | Site solutionary.com

A vulnerability exists in the Tembria Server Monitor application allowing an attacker to easily decrypt usernames and passwords used to authenticate to the application. This is a second level attack that requires access to the password files stored within the application directory.

tags | advisory
MD5 | 0f01e6c7de37ce973f94c68b6d6d42a0
Secunia Security Advisory 39270
Posted Apr 16, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Lincoln has reported a vulnerability in Tembria Server Monitor, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | 4127ec5b629a7624916a3f7124cbe6f0
Tembria Server Monitor 5.6.0 Stack Overflow
Posted Apr 10, 2010
Authored by Lincoln | Site corelan.be

Tembria Server Monitor version 5.6.0 suffers from a stack overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2010-1316
MD5 | dbba3c9ab99ad6479338f1fad1e5e128
sert.ann
Posted Sep 23, 1999

sert.ann

MD5 | 35c414b4b11d9de2824b8001f5a45899
Page 1 of 1
Back1Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    2 Files
  • 24
    Jul 24th
    19 Files
  • 25
    Jul 25th
    28 Files
  • 26
    Jul 26th
    2 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close