|
263261
|
- |
|
websense
|
websense_web_security
|
The TRITON management console in Websense Web Security before 7.6 Hotfix 24 allows remote attackers to bypass authentication and read arbitrary reports via a crafted uid field, in conjunction with a …
|
CWE-287
Improper Authentication
|
CVE-2012-4604
|
2012-08-23 19:32 |
2012-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263262
|
- |
|
websense
|
websense
websense_web_security
websense_web_filter
|
The ISAPI Filter plug-in in Websense Enterprise, Websense Web Security, and Websense Web Filter 6.3.3 and earlier, when used in conjunction with a Microsoft ISA or Microsoft Forefront TMG server, all…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-5144
|
2012-08-23 19:32 |
2012-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263263
|
- |
|
websense
|
websense_web_security
websense_web_filter
|
The Remote Filtering component in Websense Web Security and Web Filter before 6.3.3 Hotfix 18 and 7.x before 7.1.1 allows remote attackers to cause a denial of service (daemon exit) via a large volum…
|
NVD-CWE-Other
|
CVE-2010-5147
|
2012-08-23 19:32 |
2012-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263264
|
- |
|
websense
|
websense_web_filter
websense_web_security
|
The default configuration of Apache Tomcat in Websense Manager in Websense Web Security 7.0 and Web Filter 7.0 enables weak SSL ciphers in conf/server.xml, which makes it easier for remote attackers …
|
CWE-16
Configuration
|
CVE-2009-5119
|
2012-08-23 19:32 |
2012-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263265
|
- |
|
websense
|
websense_web_filter
websense_web_security
|
The default configuration of Apache Tomcat in Websense Manager in Websense Web Security 7.0 and Web Filter 7.0 allows connections to TCP port 1812 from arbitrary source IP addresses, which makes it e…
|
CWE-16
Configuration
|
CVE-2009-5120
|
2012-08-23 19:32 |
2012-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263266
|
- |
|
websense
|
websense_email_security
|
Websense Email Security 7.1 before Hotfix 4 allows remote attackers to bypass the sender-based blacklist by using the 8BITMIME EHLO keyword in the SMTP session.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-5121
|
2012-08-23 19:32 |
2012-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263267
|
- |
|
mcafee
|
email_and_web_security
email_gateway
|
McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, accesses files with the privileges of the root user, which allows…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4586
|
2012-08-23 02:55 |
2012-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263268
|
- |
|
mcafee
|
email_and_web_security
email_gateway
|
Cross-site scripting (XSS) vulnerability in McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote attacke…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4580
|
2012-08-22 19:42 |
2012-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263269
|
- |
|
mcafee
|
email_and_web_security
email_gateway
|
McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, does not disable the server-side session token upon the closing o…
|
CWE-287
Improper Authentication
|
CVE-2012-4581
|
2012-08-22 19:42 |
2012-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263270
|
- |
|
mcafee
|
enterprise_mobility_manager
enterprise_mobility_manager_agent
|
McAfee Enterprise Mobility Manager (EMM) Agent before 4.8 and Server before 10.1 record all invalid usernames presented in failed login attempts, and place them on a list of accounts that an administ…
|
CWE-255
Credentials Management
|
CVE-2012-4588
|
2012-08-22 19:42 |
2012-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
