Lucene search
K

37 matches found

OSV
OSV
added 2021/09/14 5:15 a.m.9 views

CVE-2019-20101

Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view whitelist rules via a Broken Access Control vulnerability in the /rest/whitelist//check endpoint. The affected versions are before version 8.13.3, and from version 8.14.0 before 8.14.1...

5.3CVSS6.1AI score0.01375EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2021/09/14 5:10 a.m.15 views

CVE-2019-20101

Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view whitelist rules via a Broken Access Control vulnerability in the /rest/whitelist//check endpoint. The affected versions are before version 8.13.3, and from version 8.14.0 before 8.14.1...

6.8AI score0.01375EPSS
Exploits0References2
CVE
CVE
added 2021/09/14 5:10 a.m.69 views

CVE-2019-20101

CVE-2019-20101 affects Atlassian Jira Server/Data Center. The vulnerability is a Broken Access Control issue in the endpoint /rest/whitelist//check, allowing anonymous remote attackers to view whitelist rules. Affected versions are before 8.13.3 and 8.14.0 up to 8.14.1. The root cause is improper...

5.3CVSS5.2AI score0.01375EPSS
Exploits0References2Affected Software2
Atlassian
Atlassian
added 2021/07/15 6:15 a.m.56 views

Anonymous users can access the /rest/whitelist/<version>/check resource - CVE-2019-20101

Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view whitelist rules via a Broken Access Control vulnerability in the /rest/whitelist//check endpoint. The affected versions are before version 8.13.3, and from version 8.14.0 before 8.14.1. Affected...

5.3CVSS6.9AI score0.01375EPSS
Exploits0Affected Software1
CVE
CVE
added 2021/06/29 3:30 p.m.47 views

CVE-2021-20101

CVE-2021-20101 affects MachForm prior to version 16, with an HTTP host header injection due to improper host header validation. This can cause a victim to receive malformed content. Multiple sources confirm the vulnerability in MachForm 15.x and earlier and identify version 16 as the fix. Impact ...

6.1CVSS6.3AI score0.00722EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2018/12/12 4:0 p.m.44 views

CVE-2018-20101

CVE-2018-20101 affects the WordPress plugin “Import users from CSV with meta” (versions

6.1CVSS6AI score0.00782EPSS
Exploits0References2Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.27 views

TrendMicro Control Manger <= 5.5 CmdProcessor.exe - Stack Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

6.7AI score
Exploits0
seebug.org
seebug.org
added 2012/02/24 12:0 a.m.33 views

TrendMicro Control Manger &lt;= v5.5 CmdProcessor.exe Stack Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

6.7AI score0.64742EPSS
Exploits9
Metasploit
Metasploit
added 2012/02/23 1:44 a.m.57 views

TrendMicro Control Manger CmdProcessor.exe Stack Buffer Overflow

This module exploits a vulnerability in the CmdProcessor.exe component of Trend Micro Control Manger up to version 5.5. The specific flaw exists within CmdProcessor.exe service running on TCP port 20101. The vulnerable function is the CGenericScheduler::AddTask function of...

10CVSS7.5AI score0.64742EPSS
Exploits9
Exploit DB
Exploit DB
added 2012/02/23 12:0 a.m.43 views

Trend Micro Control Manger 5.5 - &#039;CmdProcessor.exe&#039; Remote Stack Buffer Overflow (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "TrendMicro Contro...

10CVSS6.6AI score0.64742EPSS
Exploits9
Tenable Nessus
Tenable Nessus
added 2012/01/24 12:0 a.m.19 views

Trend Micro Control Manager CmdProcessor.exe Remote Buffer Overflow (uncredentialed check)

Binary data tmcmcmdprocessoraddtaskbofremote.nbin...

10CVSS7.3AI score0.64742EPSS
Exploits9References4
NVD
NVD
added 2011/12/25 1:55 a.m.24 views

CVE-2011-5001

Stack-based buffer overflow in the CGenericScheduler::AddTask function in cmdHandlerRedAlertController.dll in CmdProcessor.exe in Trend Micro Control Manager 5.5 before Build 1613 allows remote attackers to execute arbitrary code via a crafted IPC packet to TCP port 20101...

10CVSS7.8AI score0.64742EPSS
Exploits9References6
Prion
Prion
added 2011/12/25 1:55 a.m.21 views

Stack overflow

Stack-based buffer overflow in the CGenericScheduler::AddTask function in cmdHandlerRedAlertController.dll in CmdProcessor.exe in Trend Micro Control Manager 5.5 before Build 1613 allows remote attackers to execute arbitrary code via a crafted IPC packet to TCP port 20101...

10CVSS8.5AI score0.64742EPSS
Exploits9References6Affected Software1
Cvelist
Cvelist
added 2011/12/25 1:0 a.m.30 views

CVE-2011-5001

Stack-based buffer overflow in the CGenericScheduler::AddTask function in cmdHandlerRedAlertController.dll in CmdProcessor.exe in Trend Micro Control Manager 5.5 before Build 1613 allows remote attackers to execute arbitrary code via a crafted IPC packet to TCP port 20101...

7.8AI score0.64742EPSS
Exploits9References6
securityvulns
securityvulns
added 2011/12/11 12:0 a.m.27 views

Trend Micro Control Manager buffer overflow

Buffer overflow on TCP/20101 request parsing...

5AI score
Exploits0References1
seebug.org
seebug.org
added 2011/12/09 12:0 a.m.36 views

Trend Micro Control Manager &quot;CmdProcessor.exe&quot;远程代码执行漏洞

BUGTRAQ ID: 50965 Trend Micro Control Manager是一款安全解决方案。 Trend Micro Control Manager在实现上存在远程代码执行漏洞,攻击者可利用此漏洞以系统级别的权限执行任意代码。 此漏洞位于运行在TCP端口20101的CmdProcessor.exe服务中,受影响的是cmdHandlerRedAlertController.dll的CGenericScheduler::AddTask函数。在处理特制的IPC报文时,受控的数据会被复制到256个字节的栈缓冲区中,导致远程执行代码 Trend Micro Control...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/12/09 12:0 a.m.35 views

Trend Micro Control Manager CmdProcessor.exe Remote Buffer Overflow

The Trend Micro Control Manager install on the remote Windows host is missing Critical Patch 1613. As such, the included CmdProcessor.exe component is affected by a remote stack-based buffer overflow vulnerability in the 'CGenericScheduler::AddTask' function of cmdHandlerRedAlertController.dll. B...

10CVSS6.1AI score0.64742EPSS
Exploits9References4
Rows per page
Query Builder