25 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-16921
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In OTRS 6.0.x up to and including 6.0.1, OTRS 5.0.x up to and including 5.0.24, and OTRS 4.0.x up to and including 4.0.26, an attacker who is logged into OTRS a...
K88125023: Linux kernel vulnerabilities CVE-2019-16921, CVE-2019-18683, CVE-2019-18805
Security Advisory Description CVE-2019-16921 In the Linux kernel before 4.17, hnsroceallocucontext in drivers/infiniband/hw/hns/hnsrocemain.c does not initialize the resp data structure, which might allow attackers to obtain sensitive information from kernel stack memory, aka CID-df7e40425813...
OTRS 6.0.1 - Remote Command Execution (2)
Exploit Title: OTRS 6.0.1 - Remote Command Execution 2 Date: 21-04-2021 Exploit Author: Hex26 Vendor Homepage: https://www.otrs.com/ Software Link: http://ftp.otrs.org/pub/otrs/ Version: 4.0.1 - 4.0.26, 5.0.0 - 5.0.24, 6.0.0 - 6.0.1 Tested on: OTRS 5.0.2/CentOS 7.2.1511 CVE : CVE-2017-16921...
OTRS 6.0.1 - Remote Command Execution Exploit (2)
Exploit Title: OTRS 6.0.1 - Remote Command Execution 2 Exploit Author: Hex26 Vendor Homepage: https://www.otrs.com/ Software Link: http://ftp.otrs.org/pub/otrs/ Version: 4.0.1 - 4.0.26, 5.0.0 - 5.0.24, 6.0.0 - 6.0.1 Tested on: OTRS 5.0.2/CentOS 7.2.1511 CVE : CVE-2017-16921 !/usr/bin/env python3...
OTRS 6.0.1 Remote Command Execution
Exploit Title: OTRS 6.0.1 - Remote Command Execution 2 Date: 21-04-2021 Exploit Author: Hex26 Vendor Homepage: https://www.otrs.com/ Software Link: http://ftp.otrs.org/pub/otrs/ Version: 4.0.1 - 4.0.26, 5.0.0 - 5.0.24, 6.0.0 - 6.0.1 Tested on: OTRS 5.0.2/CentOS 7.2.1511 CVE : CVE-2017-16921...
CVE-2018-16921
This CVE entry is rejected/not used per the initial description.
CVE-2018-16921
...
CVE-2020-16921
An information disclosure vulnerability exists in Text Services Framework when it fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could potentially read data that was not intended to be disclosed. Note that this vulnerability would not allow a...
CVE-2020-16921 Windows Text Services Framework Information Disclosure Vulnerability
...
CVE-2020-16921
CVE-2020-16921 is an information-disclosure vulnerability in the Windows Text Services Framework caused by improper handling of objects in memory. An attacker who can log on to an affected system and open a specially crafted file could read data not intended to be disclosed. The issue does not en...
CVE-2020-16921 Windows Text Services Framework Information Disclosure Vulnerability
...
CVE-2019-16921
An information disclosure flaw was found in the Linux kernel. The Infiniband driver does not initialize the resp data structure which allows an attacker to obtain sensitive information from kernel stack memory. The highest threat from this vulnerability is to data confidentiality...
CVE-2019-16921
In the Linux kernel before 4.17, hnsroceallocucontext in drivers/infiniband/hw/hns/hnsrocemain.c does not initialize the resp data structure, which might allow attackers to obtain sensitive information from kernel stack memory, aka CID-df7e40425813...
CVE-2019-16921
In the Linux kernel before 4.17, hns_roce_alloc_ucontext in drivers/infiniband/hw/hns/hns_roce_main.c does not initialize the resp data structure, which may allow attackers to read sensitive information from kernel stack memory (CID-df7e40425813). This CVE affects the kernel code path associated ...
CVE-2019-16921
In the Linux kernel before 4.17, hnsroceallocucontext in drivers/infiniband/hw/hns/hnsrocemain.c does not initialize the resp data structure, which might allow attackers to obtain sensitive information from kernel stack memory, aka CID-df7e40425813...
OTRS Authenticated Remote Code Execution (OSA-2017-09)
The version of OTRS running on the remote host is 4.0.x prior to 4.0.27, 5.0.x prior to 5.0.25, or 6.0.x prior to 6.0.2. It is, therefore, affected by a remote code execution vulnerability due to improper validation of user-supplied data. An authenticated, remote attacker can manipulate form...
OTRS 5.0.x / 6.0.x Remote Command Execution
Exploit Title: OTRS Shell Access Date: 21-01-2018 Exploit Author: BA|ln0rn Vendor Homepage: https://www.otrs.com/ Software Link: http://ftp.otrs.org/pub/otrs/ Version: 4.0.1 - 4.0.26, 5.0.0 - 5.0.24, 6.0.0 - 6.0.1 Tested on: OTRS 5.0.2/CentOS 7.2.1511 CVE : CVE-2017-16921 CVE-2017-16921: "In OTRS...
OTRS 5.0.x6.0.x - Remote Command Execution
OTRS 5.0.x6.0.x - Remote Command Execution Exploit Title: OTRS Shell Access Date: 21-01-2018 Exploit Author: Bæln0rn Vendor Homepage: https://www.otrs.com/ Software Link: http://ftp.otrs.org/pub/otrs/ Version: 4.0.1 - 4.0.26, 5.0.0 - 5.0.24, 6.0.0 - 6.0.1 Tested on: OTRS 5.0.2/CentOS 7.2.1511 CVE...
OTRS 5.0.x/6.0.x - Remote Command Execution Vulnerability
Exploit for perl platform in category web applications Exploit Title: OTRS Shell Access Exploit Author: Bæln0rn Vendor Homepage: https://www.otrs.com/ Software Link: http://ftp.otrs.org/pub/otrs/ Version: 4.0.1 - 4.0.26, 5.0.0 - 5.0.24, 6.0.0 - 6.0.1 Tested on: OTRS 5.0.2/CentOS 7.2.1511 CVE :...
OTRS 5.0.x/6.0.x - Remote Command Execution (1)
Exploit Title: OTRS 5.0.x/6.0.x - Remote Command Execution 1 Date: 21-01-2018 Exploit Author: Bæln0rn Vendor Homepage: https://www.otrs.com/ Software Link: http://ftp.otrs.org/pub/otrs/ Version: 4.0.1 - 4.0.26, 5.0.0 - 5.0.24, 6.0.0 - 6.0.1 Tested on: OTRS 5.0.2/CentOS 7.2.1511 CVE : CVE-2017-169...