Tagged: cert

VU#298796: Centreon contains multiple vulnerabilities 0

VU#298796: Centreon contains multiple vulnerabilities

Vulnerability Note VU#298796 Centreon contains multiple vulnerabilities Original Release date: 17 Oct 2014 | Last revised: 17 Oct 2014 Overview Centreon version 2.5.1 and Centreon Enterprise Server version 2.2 contain multiple vulnerabilities. Description CWE-77 : Improper Neutralization of Special Elements used in a Command (‘Command Injection’) – CVE-2014-3829 Centreon version 2.5.1 and Centreon Enterprise Server version 2.2 are vulnerable to command injection due to unsafe handling of session_id and  template_id variables in displayServiceStatus.php and insufficient filtering on the command_line variable

VU#280844: Cryoserver Security Appliance vulnerable to privilege escalation 0

VU#280844: Cryoserver Security Appliance vulnerable to privilege escalation

Vulnerability Note VU#280844 Cryoserver Security Appliance vulnerable to privilege escalation Original Release date: 07 Oct 2014 | Last revised: 07 Oct 2014 Overview Cryoserver Security Appliance 7.3.x vulnerable to privilege escalation Description CWE-264 : Permissions, Privileges, and Access Controls Cryoserver Security Appliance 7.3.x does not properly assign permission to the /etc/init.d/cryoserver shell script and allows the default support account to modify it using the   /bin/cryo-mgmt script. Impact An authenticated attacker may be able to gain root access to the appliance. Solution The CERT/CC is currently unaware of a practical solution to this problem.

VU#241508: CacheGuard OS contains a cross-site request forgery vulnerability 0

VU#241508: CacheGuard OS contains a cross-site request forgery vulnerability

Vulnerability Note VU#241508 CacheGuard OS contains a cross-site request forgery vulnerability Original Release date: 10 Sep 2014 | Last revised: 10 Sep 2014 Overview CacheGuard OS v5.7.7 does not sufficiently verify whether a valid request was intentionally provided by the user, which results in a cross-site request forgery (CSRF) vulnerability. Description CWE-352 : Cross-Site Request Forgery (CSRF) CacheGuard OS v5.7.7 does not sufficiently verify whether a valid request was intentionally provided by the user. The cross-site request forgery (CSRF) vulnerability lies in  /gui/password-wadmin.apl Impact A remote unauthenticated attacker may be able to trick an authenticated user into clicking a specially crafted link, resulting in settings modification or privilege escalation.

VU#460687: Cobham Sailor satellite terminals contain hardcoded credentials 0

VU#460687: Cobham Sailor satellite terminals contain hardcoded credentials

Vulnerability Note VU#460687 Cobham Sailor satellite terminals contain hardcoded credentials Original Release date: 07 Aug 2014 | Last revised: 07 Aug 2014 Overview Cobham Sailor 900 and 6000 series satellite terminals contain hardcoded credentials. Description CWE-798 : Use of Hard-coded Credentials IOActive reports that Cobham Sailor 900 and 6000 series satellite communication terminals running firmware version: 1.08 MFHF / 2.11 VHF contain hardcoded administrator credentials.

VU#867980: Silver Peak VX is vulnerable to cross-site request forgery and cross-site scripting 0

VU#867980: Silver Peak VX is vulnerable to cross-site request forgery and cross-site scripting

Vulnerability Note VU#867980 Silver Peak VX is vulnerable to cross-site request forgery and cross-site scripting Original Release date: 28 Jul 2014 | Last revised: 28 Jul 2014 Overview Silver Peak VX version 6.2.2.0_47968 is vulnerable to cross-site request forgery and cross-site scripting. Description CWE-352 : Cross-Site Request Forgery (CSRF) – CVE-2014-2974 Silver Peak VX version 6.2.2.0_47968 contains a cross-site request forgery vulnerability in  /php/user_account.php that allows an unauthenticated user to create a new administrator account. CWE-79 : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) – CVE-2014-2975 Silver Peak VX version 6.2.2.0_47968 also contains a reflected cross-site scripting vulnerability in /php/user_account.php that can allow an attacker to inject arbitrary HTML content (including scripts) via the vulnerable query string parameter user_id

VU#162308: Resin Pro improperly performs Unicode transformations 0

VU#162308: Resin Pro improperly performs Unicode transformations

Vulnerability Note VU#162308 Resin Pro improperly performs Unicode transformations Original Release date: 23 Jul 2014 | Last revised: 23 Jul 2014 Overview Resin Pro 4.0.39 and possibly earlier versions improperly performs Unicode transformations. Description CWE-20 : Improper Input Validation Resin Pro 4.0.39 and possibly earlier versions perform incorrect Unicode transformations on output to HTTP responses for ISO-8859-1