847.221.0200  Main Office

Halock Blog

CVE-2014-4980 Parameter Tampering in Nessus Web UI – Remote Information Disclosure »

Title: CVE-2014-4980 Parameter Tampering in Nessus Web UI – Remote Information Disclosure
Product: Nessus
Vendor: Tenable Network Security
Version: Nessus 5.2.3-5.2.7 – Web UI 2.3.4 (potentially lower)
Vendor Notified Date: June 24, 2014
Vendor Resolved Date: June 25, 2014
Release Date: July 18, 2014
Risk: Medium
Authentication: Not Required
Remote: Yes

A parameter tampering vulnerability exists in Nessus 5.2.7 and potentially below that allows remote … Read More »

CVE-2013-3734 – JBoss AS Administration Console – Password Returned in Later Response »

Product: Embedded Jopr – JBoss AS Administration Console
Vendor: Red Hat Middleware, LLC
Version: < 1.2
Tested Version: 1.2
Vendor Notified Date: May 29, 2013
Release Date: June 03, 2013
Risk: Moderate
Authentication: Required
Remote: Yes
Passwords submitted to the application are returned in clear form in later responses from the application. Although the password filed is masked, it is viewable via the page … Read More »

CVE-2013-1402 – DigiLIBE Management Console – Execution After Redirect (EAR) Vulnerability »

DigiLIBE 3.4 and possibly other versions sends a redirect but does not exit, which allows remote attackers to obtain sensitive configuration information via a direct request to configuration/general_configuration.html.

CVSS Severity (version 2.0):

CVSS v2 Base Score:5.0 (MEDIUM) (AV:N/AC:L/Au:N/C:P/I:N/A:N) (legend)
Impact Subscore: 2.9
Exploitability Subscore: 10.0
CVSS Version 2 Metrics:

Access Vector: Network exploitable
Access Complexity: Low
Authentication: Not required to exploit
Impact Type:Allows unauthorized … Read More »

CVE-2011-5251 – vBulletin – Multiple Open Redirects »

Open redirect vulnerability in forum/login.php in vBulletin 4.1.3 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the url parameter in a lostpw action.

CVSS Severity (version 2.0):
CVSS v2 Base Score:5.8 (MEDIUM) (AV:N/AC:M/Au:N/C:P/I:P/A:N) (legend)
Impact Subscore: 4.9
Exploitability Subscore: 8.6

CVSS Version 2 Metrics:
Access Vector: Network exploitable; Victim must voluntarily interact … Read More »

CVE-2012-6493: Nexpose Security Console CSRF Vulnerability »

Product: Nexpose Security Console
Vendor: Rapid7
Version: < 5.5.3
Tested Version: 5.5.1
Vendor Notified Date: December 19, 2012
Release Date: January 2, 2013
Risk: High
Authentication: None required
Remote: Yes
Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in Nexpose Security Console 5.5.3 and below allow remote attackers to submit actions on a legitimate user?s behalf.
By not properly checking each URL, an attacker can execute requests … Read More »

View Older Posts