Vulnerabilities > Securecomputing
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-07-27 | CVE-2007-4043 | Improper Authentication vulnerability in Securecomputing Securityreporter 4.2.30/4.6.3 file.cgi in Secure Computing SecurityReporter (aka Network Security Analyzer) before 4.6.3 allows remote attackers to bypass authentication via a name parameter ending with a "%00.gif" sequence. | 5.0 |
2007-07-25 | CVE-2007-3986 | Directory Traversal Vulnerability And Authentication Bypass vulnerability in Securecomputing Securityreporter 4.6.3 file.cgi in Secure Computing SecurityReporter (aka Network Security Analyzer) 4.6.3 allows remote attackers to bypass authentication via a name parameter that specifies the eventcache directory and a non-GIF file, which causes the $dontvalidate variable to be set to true. | 5.0 |
2007-07-25 | CVE-2007-3985 | Directory Traversal Vulnerability And Authentication Bypass vulnerability in Securecomputing Securityreporter 4.6.3 Directory traversal vulnerability in file.cgi in Secure Computing SecurityReporter (aka Network Security Analyzer) 4.6.3 allows remote attackers to download arbitrary files via a .. | 5.0 |
2006-10-17 | CVE-2006-5303 | RemoteAccess Local Information Disclosure vulnerability in Securecomputing Safeword Remoteaccess 2.1 Secure Computing SafeWord RemoteAccess 2.1 allows local users to obtain the UserCenter webportal password, database encryption keys, and signing keys by reading (1) base-64 encoded data in SERVERS\Web\Tomcat\usercenter\WEB-INF\login.conf and (2) plaintext data in SERVERS\Shared\signers.cfg. | 2.1 |
2005-05-02 | CVE-2005-0865 | Remote vulnerability in Securecomputing Samsung Adsl Modem Smdk8947V1.2 Samsung ADSL Modem SMDK8947v1.2 uses default passwords for the (1) root, (2) admin, or (3) user users, which allows remote attackers to gain privileges via Telnet or an HTTP request to adsl.cgi. | 7.5 |
2005-05-02 | CVE-2005-0864 | Remote vulnerability in Securecomputing Samsung Adsl Modem Smdk8947V1.2 The Boa web server, as used in Samsung ADSL Modem SMDK8947v1.2 and possibly other products, allows remote attackers to read arbitrary files via a full pathname in the HTTP request. | 5.0 |
2004-12-31 | CVE-2004-2545 | Denial-Of-Service vulnerability in Securecomputing Sidewinder G2 6.1.0.01 Secure Computing Corporation Sidewinder G2 6.1.0.01 allows remote attackers to cause a denial of service (SMTP proxy failure) via unknown attack vendors involving an "extremely busy network." NOTE: this might not be a vulnerability because the embedded monitoring sub-system automatically restarts after the failure. | 5.0 |
2004-12-31 | CVE-2004-2544 | Information Disclosure vulnerability in Securecomputing Sidewinder G2 6.1.0.01 Admin Console in Secure Computing Corporation Sidewinder G2 6.1.0.01 exports private keys when exporting firewall certificates, which might allow attackers to obtain sensitive information. | 2.1 |
2004-12-31 | CVE-2004-2543 | Denial-Of-Service vulnerability in Securecomputing Sidewinder G2 6.1.0.01 Secure Computing Corporation Sidewinder G2 6.1.0.01 might allow remote attackers to cause a denial of service (proxy failure) via invalid traffic to the (1) T.120 or (2) RTSP proxy, or (3) invalid MIME messages to the mail filter. | 5.0 |
2004-12-31 | CVE-2004-2399 | Denial-Of-Service vulnerability in Securecomputing Sidewinder G2 6.1.0.01 Secure Computing Corporation Sidewinder G2 6.1.0.01 allows remote attackers to cause a denial of service (CPU consumption) via delayed responses to DNS queries. | 5.0 |