RSS   Vulnerabilities for 'Webdefend'   RSS

2011-05-05
 
CVE-2011-1906

CWE-255
 

 
Trustwave WebDefend Enterprise before 5.0 7.01.903-1.4 stores specific user-account credentials in a MySQL database, which makes it easier for remote attackers to read the event collection table via requests to the management port, a different vulnerability than CVE-2011-0756.

 
2011-05-04
 
CVE-2011-0756

CWE-255
 

 
The application server in Trustwave WebDefend Enterprise before 5.0 uses hardcoded console credentials, which makes it easier for remote attackers to read security-event data by using the remote console GUI to connect to the management port.

 

 >>> Vendor: Trustwave 5 Products
Secure web gateway
Modsecurity
Webdefend
Owasp modsecurity core rule set
Mailmarshal


Copyright 2024, cxsecurity.com

 

Back to Top