Show filters
163 Total Results
Displaying 81-90 of 163
Sort by:
Attacker Value
Unknown

CVE-2016-7786

Disclosure Date: April 07, 2017 (last updated November 26, 2024)
Sophos Cyberoam UTM CR25iNG 10.6.3 MR-5 allows remote authenticated users to bypass intended access restrictions via direct object reference, as demonstrated by a request for Licenseinformation.jsp. This is fixed in 10.6.5.
0
Attacker Value
Unknown

CVE-2017-6412

Disclosure Date: March 30, 2017 (last updated November 26, 2024)
In Sophos Web Appliance (SWA) before 4.3.1.2, Session Fixation could occur, aka NSWA-1310.
0
Attacker Value
Unknown

CVE-2017-6184

Disclosure Date: March 30, 2017 (last updated November 26, 2024)
In Sophos Web Appliance (SWA) before 4.3.1.2, a section of the machine's interface responsible for generating reports was vulnerable to remote command injection via the token parameter, aka NSWA-1303.
0
Attacker Value
Unknown

CVE-2017-6182

Disclosure Date: March 30, 2017 (last updated November 26, 2024)
In Sophos Web Appliance (SWA) before 4.3.1.2, a section of the machine's interface responsible for generating reports was vulnerable to remote command injection via functions, aka NSWA-1304.
0
Attacker Value
Unknown

CVE-2017-6183

Disclosure Date: March 30, 2017 (last updated November 26, 2024)
In Sophos Web Appliance (SWA) before 4.3.1.2, a section of the machine's configuration utilities for adding (and detecting) Active Directory servers was vulnerable to remote command injection, aka NSWA-1314.
0
Attacker Value
Unknown

CVE-2016-9554

Disclosure Date: January 28, 2017 (last updated November 25, 2024)
The Sophos Web Appliance Remote / Secure Web Gateway server (version 4.2.1.3) is vulnerable to a Remote Command Injection vulnerability in its web administrative interface. These vulnerabilities occur in MgrDiagnosticTools.php (/controllers/MgrDiagnosticTools.php), in the component responsible for performing diagnostic tests with the UNIX wget utility. The application doesn't properly escape the information passed in the 'url' variable before calling the executeCommand class function ($this->dtObj->executeCommand). This function calls exec() with unsanitized user input allowing for remote command injection. The page that contains the vulnerabilities, /controllers/MgrDiagnosticTools.php, is accessed by a built-in command answered by the administrative interface. The command that calls to that vulnerable page (passed in the 'section' parameter) is: 'configuration'. Exploitation of this vulnerability yields shell access to the remote machine under the 'spiderman' user account.
0
Attacker Value
Unknown

CVE-2016-9553

Disclosure Date: January 28, 2017 (last updated November 25, 2024)
The Sophos Web Appliance (version 4.2.1.3) is vulnerable to two Remote Command Injection vulnerabilities affecting its web administrative interface. These vulnerabilities occur in the MgrReport.php (/controllers/MgrReport.php) component responsible for blocking and unblocking IP addresses from accessing the device. The device doesn't properly escape the information passed in the variables 'unblockip' and 'blockip' before calling the shell_exec() function which allows for system commands to be injected into the device. The code erroneously suggests that the information handled is protected by utilizing the variable name 'escapedips' - however this was not the case. The Sophos ID is NSWA-1258.
0
Attacker Value
Unknown

CVE-2016-7442

Disclosure Date: October 03, 2016 (last updated November 25, 2024)
The Frontend component in Sophos UTM with firmware 9.405-5 and earlier allows local administrators to obtain sensitive password information by reading the "value" field of the proxy user settings in "system settings / scan settings / anti spam" configuration tab.
0
Attacker Value
Unknown

CVE-2016-7397

Disclosure Date: October 03, 2016 (last updated November 25, 2024)
The Frontend component in Sophos UTM with firmware 9.405-5 and earlier allows local administrators to obtain sensitive password information by reading the "value" field of the SMTP user settings in the notifications configuration tab.
0
Attacker Value
Unknown

CVE-2016-6597

Disclosure Date: August 10, 2016 (last updated November 25, 2024)
Sophos EAS Proxy before 6.2.0 for Sophos Mobile Control, when Lotus Traveler is enabled, allows remote attackers to access arbitrary web-resources from the backend mail system via a request for the resource, aka an Open Reverse Proxy vulnerability.
0