|
 |
| SecurityReason | ||
| WLB | ||
| RSS | ||
| Corporate | ||
| Services | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
| Details : WLB-2008100019 | ||||||
 SecurityAlert : None
Credit : Tribal MP SecurityRisk : Medium  (About) Remote : Yes Local : No Status : Bug History : [2008-10-07] Started Affected software : Blue Coat K9 Web Protection V4.0.230 Beta Text : Blue Coat K9 Web Protection V4.0.230 Beta Vulnerability Set 5, 2008 -- Affected Vendors: Blue Coat -- Affected Products: K9 Web Protection V4.0.230 Beta -- Download at: http://www1.k9webprotection.com/getk9/beta.php -- Vulnerability Details: A vulnerability exists in the Blue Coat K9 Web Protection V4.0.230 Beta that allow anyone to bypass localy the Administration panel located at http://127.0.0.1:2372. To desactivate the password and get full access simply desactive javascript in your browser. Internet Explorer Untested but works Opera Go to TOOLS > PREFERENCES > CONTENT > unselect ENABLE JAVASCRIPT > OK The vulnerable addresses are: http://127.0.0.1:2372/summary http://127.0.0.1:2372/detail http://127.0.0.1:2372/overrides http://127.0.0.1:2372/pwemail -- Dificulty Level: Low -- Vendor Response: None -- Disclosure Timeline: 2008-07-05 - Vulnerability reported to vendor 2008-07-05 - Disclosed -- About: Fabio Pinheiro at http://dicas3000.blogspot.com If you want change this note, please use UCP
|
||||||
| Alert | ||
*BSD libc (strfmon) Multiple vulnerabilities
Maksymilian Arciemowicz discovered a Integer Overflow vulnerability in the libc library "strfmon()" function.A vulnerability could allow an attacker who successfully exploits this vulnerability to take control of the affected *BSD systems. |
||
| Apache |  |
|
» Apache Tomcat <= |
||
| PHP | |
|
» PHP 5.2.5 and prior : |
||
- 2008-03-25| Copyright © SecurityReason. All Rights Reserved. |