 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.103460 |
| Categoría: | Web application abuses |
| Título: | Sourcefire Defense Center < 4.10.2.3 Multiple Vulnerabilities - Active Check |
| Resumen: | Sourcefire Defense Center is prone to multiple vulnerabilities,; including multiple arbitrary file download vulnerabilities, an arbitrary file deletion; vulnerability, a security bypass vulnerability, and an HTML injection vulnerability. |
| Descripción: | Summary: Sourcefire Defense Center is prone to multiple vulnerabilities, including multiple arbitrary file download vulnerabilities, an arbitrary file deletion vulnerability, a security bypass vulnerability, and an HTML injection vulnerability. Vulnerability Impact: Exploiting these vulnerabilities may allow an attacker to view or delete arbitrary files within the context of the application, gain unauthorized access and execute HTML and script code in the context of the affected site, steal cookie-based authentication credentials, or control how the site is rendered to the user. Information harvested may aid in launching further attacks. Affected Software/OS: Sourcefire Defense Center prior to version 4.10.2.3. Solution: Update to version 4.10.2.3 or later. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P |
| Copyright | Copyright (C) 2012 Greenbone AG |
| Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |