The Vigil@nce team watches vulnerabilities impacting your computers, and then offers solutions, a database and tools to correct them.
Each user customizes the list of software to track.
As soon as Vigil@nce publishes an alert for one of his software, the user receives a bulletin, containing an helpful explanation of the threat, its patches and workarounds.
The administrator then uses the online Vigil@nce diary in order to plan and track the security process.
Our offer...
|
|
public vulnerabilities| 1 |
EMC VNX/Celerra Control Station: privilege escalation via nasadmin
An attacker, who is member of the nasadmin group, can alter scripts of EMC VNX/Celerra Control Station, in order to escalate his privileges... |
| 1 |
RSA SecurID: obsolete algorithm
Several products related to RSA SecurID use an obsolete encryption algorithm, and a short key size... |
| 2 |
EMC Avamar Client: incorrect validation of certificate
When a certificate authentication is configured, an attacker can create a malicious EMC Avamar server, in order to deceive the client... |
| 2 |
EMC Avamar: file reading via File Restore
An attacker can manipulate the url of the file restore web interface of EMC Avamar, in order to read a file... |
| 2 |
EMC NetWorker: privilege escalation via nsrpush
A local attacker can use an unprotected file of nsrpush of EMC NetWorker, in order to escalate his privileges... |
| 2 |
WordPress: information disclosure via Advanced XML Reader
An attacker can use an external XML entity in Advanced XML Reader of WordPress, in order to obtain sensitive information... |
| 2 |
Xen: denial of service via VT-d MSI
An attacker, who is located in a guest system, can remap interruptions of a device, in order to trigger a denial of service... |
| 2 |
Cisco IOS XR: denial of service via SNMP
An attacker can send malformed SNMP packets to Cisco IOS XR, in order to trigger a denial of service... |
| 2 |
Cisco Prime Central for Hosted Collaboration Solution: multiple vulnerabilities
An attacker can use several vulnerabilities of Cisco Prime Central for Hosted Collaboration Solution... |
| 2 |
Cisco Prime, Secure ACS: privilege escalation
An attacker can format special commands for Cisco Prime and Secure ACS, in order to escalate his privileges... |
|
|
recent vulnerabilities
| 2 |
Bintec R, X: infinite loop of A-MPDU
An attacker can send a malformed A-MPDU (Aggregated MAC Protocol Data Unit) packet, to generate an infinite loop in Bintec R/X, in order to trigger a denial of service... |
| 2 |
WordPress: Cross Site Request Forgery of WP CleanFix
An attacker can trigger a Cross Site Request Forgery in WP CleanFix of WordPress, in order to force the victim to perform operations... |
| 1 |
EMC VNX/Celerra Control Station: privilege escalation via nasadmin
An attacker, who is member of the nasadmin group, can alter scripts of EMC VNX/Celerra Control Station, in order to escalate his privileges... |
| 1 |
RSA SecurID: obsolete algorithm
Several products related to RSA SecurID use an obsolete encryption algorithm, and a short key size... |
| 2 |
WordPress: Cross Site Request Forgery of Mail On Update
An attacker can trigger a Cross Site Request Forgery in Mail On Update of WordPress, in order to force the victim to perform operations... |
| 2 |
libvirt: descriptor leak via PoolListAllVolumes
An attacker can create a file descriptor leak in the remoteDispatchStoragePoolListAllVolumes() function of libvirt, in order to trigger a denial of service... |
| 2 |
Cisco Secure ACS: session replay
An attacker can capture the session identifier of Cisco Secure ACS, in order to reuse it to access to user's space... |
| 2 |
Cisco ACE: denial of service via SSL Logs
An attacker can open numerous SSL sessions, to fill in the Cisco ACE log files, in order to trigger a denial of service... |
| 2 |
Drupal: two vulnerabilities of Google Authenticator login
An attacker can use two vulnerabilities of the Google Authenticator login module of Drupal, in order to bypass the authentication... |
| 2 |
WordPress: Cross Site Scripting of Newsletter
An attacker can trigger a Cross Site Scripting in Newsletter of WordPress, in order to execute JavaScript code in the context of the web site... |
|
Vulnerabilities are discovered daily and published on thousands of internet information sources.
Vigil@nce describes these vulnerabilities and how to protect your system. This information is customized according to your environment, it is available on a web site and sent by e-mail alerts.
Your team secures and protects your networks based on Vigil@nce information and tools.
your environment
- a database describing more than 20000 vulnerabilities and their 30000 solutions
- a web space where each user defines his preferences
- alert and synthesis e-mails, to inform your teams
- a customized tracking of your software and systems
- a diary to plan solutions to install, and to monitor the security process of each computer
- a manager view, and customized reports
your benefits
- a customized watch on computer vulnerabilities and their solutions
- an experienced team at your service for more than 14 years
- a tool to monitor the security process of your networks and computers
- a CVE compatible solution
- a time saving for your team which concentrates on important tasks
|
|
