RSS   Vulnerabilities for 'Enterpise'   RSS

2008-10-21
 
CVE-2008-4646

CWE-255
 

 
The Websense Reporter Module in Websense Enterprise 6.3.2 stores the SQL database system administrator password in plaintext in CreateDbInstall.log, which allows local users to gain privileges to the database.

 
2007-12-21
 
CVE-2007-6511

CWE-Other
 

 
Websense Enterprise 6.3.1 allows remote attackers to bypass content filtering by visiting http URLs with a (1) RealPlayer G2, (2) MSMSGS, or (3) StoneHttpAgent User-Agent header, which results in a Non-HTTP categorization.

 
2007-12-11
 
CVE-2007-6312

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in the logon page in Web Reporting Tools portal in Websense Enterprise and Web Security Suite 6.3 allows remote attackers to inject arbitrary web script or HTML via the username field.

 

 >>> Vendor: Websense 25 Products
Websense
Enterprise
Web security suite
Enterpise
Reporting tools
Personal email manager
Websense email security
Email security
Websense web filter
Websense web security
Websense web security gateway
Websense web security gateway anywhere
Websense content content gateway
Websense v10000
Triton unified security center
Triton web filter
Triton web security
Triton web security gateway
Triton web security gateway anywhere
Triton ap web
Triton ap data
Triton ap email
V-series appliances
Triton
Content gateway


Copyright 2024, cxsecurity.com

 

Back to Top