SSD Advisory – ManageEngine Code Execution

Credit to Author: SSD / Maor Schwartz| Date: Fri, 16 Jun 2017 18:46:58 +0000

Vulnerability Summary The following advisory describes Unrestricted File Upload vulnerability that leads to Code Execution found in ManageEngine Firewall Analyzer and ManageEngine OpManager. ManageEngine Firewall Analyzer is a browser-based firewall/VPN/proxy server reporting solution that uses a built-in syslog server to store, analyze, and report on these logs. Firewall Analyzer provides daily, weekly, monthly, and yearly … Continue reading SSD Advisory – ManageEngine Code Execution

Read more

SSD Advisory – Sentora Web Hosting Control Panel Multiple Vulnerabilities

Credit to Author: noam| Date: Tue, 11 Apr 2017 10:23:24 +0000

Vulnerabilities Summary The following advisory describes two (2) vulnerabilities found in Sentora Web Hosting Control Panel that lead to remote code execution. Sentora is a free to download and use web hosting control panel developed for Linux, UNIX and BSD based servers or computers. The Sentora software can turn a domestic or commercial server into … Continue reading SSD Advisory – Sentora Web Hosting Control Panel Multiple Vulnerabilities

Read more

SSD Advisory – Horde Groupware Webmail Multiple Remote Code Execution Vulnerabilities

Credit to Author: Maor Schwartz| Date: Sun, 09 Apr 2017 10:28:46 +0000

Vulnerabilities Summary The following advisory describes two (2) vulnerabilities found in Horde Groupware Webmail. Horde Groupware Webmail Edition is a free, enterprise ready, browser based communication suite. Users can read, send and organize email messages and manage and share calendars, contacts, tasks, notes, files, and bookmarks with the standards compliant components from the Horde Project. … Continue reading SSD Advisory – Horde Groupware Webmail Multiple Remote Code Execution Vulnerabilities

Read more