VYPR

Enterpise

by Websense

CVEs (9)

  • CVE-2005-3155Oct 5, 2005
    risk 0.08cvss epss 0.64

    Buffer overflow in the W3C logging for MailEnable Enterprise 1.1 and Professional 1.6 allows remote attackers to execute arbitrary code.

  • CVE-2001-0805Dec 6, 2001
    risk 0.04cvss epss 0.08

    Directory traversal vulnerability in ttawebtop.cgi in Tarantella Enterprise 3.00 and 3.01 allows remote attackers to read arbitrary files via a .. (dot dot) in the pg parameter.

  • CVE-2007-6312Dec 11, 2007
    risk 0.01cvss epss 0.16

    Cross-site scripting (XSS) vulnerability in the logon page in Web Reporting Tools portal in Websense Enterprise and Web Security Suite 6.3 allows remote attackers to inject arbitrary web script or HTML via the username field.

  • CVE-2010-5144Aug 23, 2012
    risk 0.00cvss epss 0.01

    The ISAPI Filter plug-in in Websense Enterprise, Websense Web Security, and Websense Web Filter 6.3.3 and earlier, when used in conjunction with a Microsoft ISA or Microsoft Forefront TMG server, allows remote attackers to bypass intended filtering and monitoring activities for…

  • CVE-2008-7312Aug 23, 2012
    risk 0.00cvss epss 0.01

    The Filtering Service in Websense Enterprise 5.2 through 6.3 does not consider the IP address during URL categorization, which makes it easier for remote attackers to bypass filtering via an HTTP request, as demonstrated by a request to a compromised server associated with a…

  • CVE-2008-4646Oct 22, 2008
    risk 0.00cvss epss 0.00

    The Websense Reporter Module in Websense Enterprise 6.3.2 stores the SQL database system administrator password in plaintext in CreateDbInstall.log, which allows local users to gain privileges to the database.

  • CVE-2007-6511Dec 21, 2007
    risk 0.00cvss epss 0.02

    Websense Enterprise 6.3.1 allows remote attackers to bypass content filtering by visiting http URLs with a (1) RealPlayer G2, (2) MSMSGS, or (3) StoneHttpAgent User-Agent header, which results in a Non-HTTP categorization.

  • CVE-2005-3690Nov 19, 2005
    risk 0.00cvss epss 0.05

    Stack-based buffer overflow in the IMAP service (meimaps.exe) of MailEnable Professional 1.6 and earlier and Enterprise 1.1 and earlier allows remote attackers to execute arbitrary code via a long mailbox name in the (1) select, (2) create, (3) delete, (4) rename, (5) subscribe,…

  • CVE-2005-3691Nov 19, 2005
    risk 0.00cvss epss 0.02

    Directory traversal vulnerability in the IMAP service (meimaps.exe) of MailEnable Professional 1.6 and earlier and Enterprise 1.1 and earlier allows remote attackers to create or rename arbitrary mail directories via the mailbox name argument of the (1) create or (2) rename…