Twitter
LinkedIn
RSS

Posts Tagged ‘cert’


VU#162308: Resin Pro improperly performs Unicode transformations

Vulnerability Note VU#162308 Resin Pro improperly performs Unicode transformations Original Release date: 23 Jul 2014 | Last revised: 23 Jul 2014 Overview Resin Pro 4.0.39 and possibly earlier versions improperly performs Unicode transformations. Description CWE-20 : Improper Input Validation Resin Pro 4.0.39 and possibly earlier versions perform incorrect Unicode transformations on output to HTTP responses for ISO-8859-1

Read More...

VU#917348: Datum Systems satellite modem devices contain multiple vulnerabilities

Vulnerability Note VU#917348 Datum Systems satellite modem devices contain multiple vulnerabilities Original Release date: 11 Jul 2014 | Last revised: 11 Jul 2014 Overview Datum Systems PSM-4500 and PSM-500 series satellite modem devices contain multiple vulnerabilities Description CWE-220 : Se nsitive Data Under FTP Root – CVE-2014-2950 The Datum Systems SnIP operating system on PSM-4500 and PSM-500 satellite modem devices has FTP enabled by default with no credentials required, which allows open access to sensitive areas of the file system. CWE-798 : Use of Hard-coded Credentials – CVE-2014-2951 The Datum Systems SnIP operating system on PSM-4500 and PSM-500 satellite modem devices has an undocumented admin user account with the password of admin. Impact A remote unauthenticated attacker may be able to gain full control of the device

Read More...

VU#712660: Raritian PX power distribution software is vulnerable to the cipher zero attack.

Vulnerability Note VU#712660 Raritian PX power distribution software is vulnerable to the cipher zero attack. Original Release date: 10 Jul 2014 | Last revised: 10 Jul 2014 Overview Raritan PX power distribution software version 01.05.08 and previous running on a model DPXR20A-16 device allows remote attackers to bypass authentication and execute arbitrary IPMI commands by using cipher suite 0 (aka cipher zero) and an arbitrary password. Description CWE-287 : Improper Authentication – CVE-2014-2955 Raritan PX power distribution software version 01.05.08 and previous running on a model DPXR20A-16 device allows remote attackers to bypass authentication and execute arbitrary IPMI commands by using cipher suite 0 (aka cipher zero) and an arbitrary password

Read More...

VU#100972: Liferay Portal PCE contains multiple cross-site scripting vulnerabilities

Vulnerability Note VU#100972 Liferay Portal PCE contains multiple cross-site scripting vulnerabilities Original Release date: 09 Jul 2014 | Last revised: 09 Jul 2014 Overview Liferay Portal versions 6.1.2 CE GA3, 6.1.X EE, 6.2.X EE, Master contain multiple cross-site scripting vulnerabilities Description CWE-79 : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) – CVE-2014-2963 Liferay is affected by a Persistent Cross Site Scripting vulnerability in the “my account area”. The specific versions affected are: Liferay Portal Community Edition 6.1.2 CE GA3, 6.1.X EE, 6.2.X EE, Master Three instances of this issue were identified, at the following locations/parameters: /group/control_panel/manage [_2_firstName parameter] /group/control_panel/manage [_2_lastName parameter] /group/control_panel/manage [_2_middleName parameter] Impact An attacker with access to the Liferay Portal “my account area” or by tricking a logged in user to visit a specially crafted URL, can conduct a cross-site scripting attack, which could be used to result in information leakage, privilege escalation, and/or denial of service. Solution Apply an Update This vulnerability was addressed on 06/04/14, bug id LPS-46156 .

Read More...

VU#143740: Netgear GS108PE Prosafe Plus Switch contains hard-coded login credentials

Vulnerability Note VU#143740 Netgear GS108PE Prosafe Plus Switch contains hard-coded login credentials Original Release date: 03 Jul 2014 | Last revised: 03 Jul 2014 Overview Netgear GS108PE Prosafe Plus Switch firmware version 1.2.0.5 contains hard-coded credentials. ( CWE-798 ) Description Netgear GS108PE Prosafe Plus Switch contains hard-coded login credentials that can be used for authenticating to the web server running on the device. The username is ntgruser and the password is debugpassword

Read More...

VU#402020: Autodesk VRED contains an unauthenticated remote code execution vulnerability

Vulnerability Note VU#402020 Autodesk VRED contains an unauthenticated remote code execution vulnerability Original Release date: 03 Jul 2014 | Last revised: 03 Jul 2014 Overview Autodesk VRED contains an unauthenticated remote code execution vulnerability. Description CWE-78 : Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’): Autodesk VRED Professional 2014 contains an unauthenticated remote code execution vulnerability

Read More...

VU#774788: Belkin N150 path traversal vulnerability

Vulnerability Note VU#774788 Belkin N150 path traversal vulnerability Original Release date: 18 Jun 2014 | Last revised: 18 Jun 2014 Overview Belkin N150 wireless routers contain a path traversal vulnerability. Description CWE-22 : Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) – CVE-2014-2962 Belkin N150 wireless router firmware versions 1.00.07 and earlier contain a path traversal vulnerability through the built-in web interface.

Read More...

VU#719172: Symantec Web Gateway contains SQL injection and cross-site scripting vulnerabilities

Vulnerability Note VU#719172 Symantec Web Gateway contains SQL injection and cross-site scripting vulnerabilities Original Release date: 17 Jun 2014 | Last revised: 17 Jun 2014 Overview Symantec Web Gateway 5.1.1.24, and possibly earlier versions, contains cross-site scripting and SQL injection vulnerabilities. Description CVE-2014-1652 – CWE-79: Improper Neutralization of Input During Web Page Generation Symantec Web Gateway 5.1.1.24, and possibly earlier versions, contains a cross-site scripting vulnerability in the filter_date_period , variable and operator parameters of the  /spywall/entSummary.php , /spywall/custom_report.php , /spywall/host_spy_report.php and /spywall/repairedclients.php pages. CVE-2014-1651 – CWE-89: Improper Neutralization of Special Elements used in an SQL Command Symantec Web Gateway 5.1.1.24, and possibly earlier versions, contains a SQL injection vulnerability in the hostname parameter of the clientreport.php page.

Read More...

VU#767044: Hanvon facial recognition (Face ID) devices do not authenticate commands

Vulnerability Note VU#767044 Hanvon facial recognition (Face ID) devices do not authenticate commands Original Release date: 20 May 2014 | Last revised: 20 May 2014 Overview Hanvon facial recognition (Face ID) devices possibly running software versions prior to 1.007.110 could allow an unauthenticated attacker to modify user and access control information. Description CWE-306: Missing Authentication for Critical Function It has been reported that Hanvon biometric facial recognition devices running software versions prior to 1.007.110 do not authenticate network connections or API commands. Hanvon devices provide a plain-text management protocol/API on port 9922/tcp.

Read More...

VU#902790: Fortinet Fortiweb 5.1 contains a cross-site request forgery vulnerability

Vulnerability Note VU#902790 Fortinet Fortiweb 5.1 contains a cross-site request forgery vulnerability Original Release date: 07 May 2014 | Last revised: 07 May 2014 Overview Fortinet Fortiweb prior to version 5.2.0 do not sufficiently verify whether a valid request was intentionally provided by the user, which results in a cross-site request forgery (CSRF) vulnerability. ( CWE-352 ) Description CWE-352: Cross-Site Request Forgery (CSRF) Fortinet Fortiweb prior to version 5.2.0 do not sufficiently verify whether a valid request was intentionally provided by the user.

Read More...