37 matches found
CVE-2019-20101
Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view whitelist rules via a Broken Access Control vulnerability in the /rest/whitelist//check endpoint. The affected versions are before version 8.13.3, and from version 8.14.0 before 8.14.1...
CVE-2019-20101
Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view whitelist rules via a Broken Access Control vulnerability in the /rest/whitelist//check endpoint. The affected versions are before version 8.13.3, and from version 8.14.0 before 8.14.1...
CVE-2019-20101
CVE-2019-20101 affects Atlassian Jira Server/Data Center. The vulnerability is a Broken Access Control issue in the endpoint /rest/whitelist//check, allowing anonymous remote attackers to view whitelist rules. Affected versions are before 8.13.3 and 8.14.0 up to 8.14.1. The root cause is improper...
Anonymous users can access the /rest/whitelist/<version>/check resource - CVE-2019-20101
Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view whitelist rules via a Broken Access Control vulnerability in the /rest/whitelist//check endpoint. The affected versions are before version 8.13.3, and from version 8.14.0 before 8.14.1. Affected...
CVE-2021-20101
CVE-2021-20101 affects MachForm prior to version 16, with an HTTP host header injection due to improper host header validation. This can cause a victim to receive malformed content. Multiple sources confirm the vulnerability in MachForm 15.x and earlier and identify version 16 as the fix. Impact ...
CVE-2018-20101
CVE-2018-20101 affects the WordPress plugin “Import users from CSV with meta” (versions
TrendMicro Control Manger <= 5.5 CmdProcessor.exe - Stack Buffer Overflow
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...
TrendMicro Control Manger <= v5.5 CmdProcessor.exe Stack Buffer Overflow
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...
TrendMicro Control Manger CmdProcessor.exe Stack Buffer Overflow
This module exploits a vulnerability in the CmdProcessor.exe component of Trend Micro Control Manger up to version 5.5. The specific flaw exists within CmdProcessor.exe service running on TCP port 20101. The vulnerable function is the CGenericScheduler::AddTask function of...
Trend Micro Control Manger 5.5 - 'CmdProcessor.exe' Remote Stack Buffer Overflow (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "TrendMicro Contro...
Trend Micro Control Manager CmdProcessor.exe Remote Buffer Overflow (uncredentialed check)
Binary data tmcmcmdprocessoraddtaskbofremote.nbin...
CVE-2011-5001
Stack-based buffer overflow in the CGenericScheduler::AddTask function in cmdHandlerRedAlertController.dll in CmdProcessor.exe in Trend Micro Control Manager 5.5 before Build 1613 allows remote attackers to execute arbitrary code via a crafted IPC packet to TCP port 20101...
Stack overflow
Stack-based buffer overflow in the CGenericScheduler::AddTask function in cmdHandlerRedAlertController.dll in CmdProcessor.exe in Trend Micro Control Manager 5.5 before Build 1613 allows remote attackers to execute arbitrary code via a crafted IPC packet to TCP port 20101...
CVE-2011-5001
Stack-based buffer overflow in the CGenericScheduler::AddTask function in cmdHandlerRedAlertController.dll in CmdProcessor.exe in Trend Micro Control Manager 5.5 before Build 1613 allows remote attackers to execute arbitrary code via a crafted IPC packet to TCP port 20101...
Trend Micro Control Manager buffer overflow
Buffer overflow on TCP/20101 request parsing...
Trend Micro Control Manager "CmdProcessor.exe"远程代码执行漏洞
BUGTRAQ ID: 50965 Trend Micro Control Manager是一款安全解决方案。 Trend Micro Control Manager在实现上存在远程代码执行漏洞,攻击者可利用此漏洞以系统级别的权限执行任意代码。 此漏洞位于运行在TCP端口20101的CmdProcessor.exe服务中,受影响的是cmdHandlerRedAlertController.dll的CGenericScheduler::AddTask函数。在处理特制的IPC报文时,受控的数据会被复制到256个字节的栈缓冲区中,导致远程执行代码 Trend Micro Control...
Trend Micro Control Manager CmdProcessor.exe Remote Buffer Overflow
The Trend Micro Control Manager install on the remote Windows host is missing Critical Patch 1613. As such, the included CmdProcessor.exe component is affected by a remote stack-based buffer overflow vulnerability in the 'CGenericScheduler::AddTask' function of cmdHandlerRedAlertController.dll. B...