Page 6 of 28 results (0.002 seconds)

CVSS: 7.5EPSS: 92%CPEs: 1EXPL: 1

SQL injection vulnerability in the logon screen of the web front end (NmConsole/Login.asp) for IpSwitch WhatsUp Professional 2005 SP1 allows remote attackers to execute arbitrary SQL commands via the (1) User Name field (sUserName parameter) or (2) Password (sPassword parameter). • https://www.exploit-db.com/exploits/25874 http://secunia.com/secunia_research/2005-13/advisory http://www.corsaire.com/advisories/c050323-001.txt http://www.idefense.com/application/poi/display?id=268&type=vulnerabilities http://www.ipswitch.com/forums/shwmessage.aspx?ForumID=20&MessageID=7699 •

CVSS: 5.0EPSS: 0%CPEs: 7EXPL: 0

The HTTP daemon in Ipswitch WhatsUp Gold 8.03 and 8.03 Hotfix 1 allows remote attackers to cause a denial of service (server crash) via a GET request containing an MS-DOS device name, as demonstrated using "prn.htm". El demonio HTTP de Ipswitch WhatsUp Gold 8,03 y 8.03 Hotfix 1 permite a atacantes remotos causar una denegación de servicio (caída del servidor) mediante una petición GET conteniendo un nombre de dispositivo MS-DOS, como se ha demostrado usando "prn.htm". • http://www.idefense.com/application/poi/display?id=142&type=vulnerabilities http://www.ipswitch.com/Support/WhatsUp/patch-upgrades.html https://exchange.xforce.ibmcloud.com/vulnerabilities/17418 •

CVSS: 7.5EPSS: 81%CPEs: 6EXPL: 2

Buffer overflow in the _maincfgret.cgi script for Ipswitch WhatsUp Gold before 8.03 Hotfix 1 allows remote attackers to execute arbitrary code via a long instancename parameter. Desbordamiento de búfer en el script _maincfgret.cgi de Ipswithc WhatsUp Gold anteriores a 8.03 Hotfix 1 permite a atacantes remotos ejecutar código de su elección mediante un parámetro instancename largo. • https://www.exploit-db.com/exploits/566 https://www.exploit-db.com/exploits/16787 http://www.idefense.com/application/poi/display?type=vulnerabilities http://www.ipswitch.com/Support/WhatsUp/patch-upgrades.html http://www.securityfocus.com/bid/11043 https://exchange.xforce.ibmcloud.com/vulnerabilities/17111 - •