Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2016/04/29 12:0 a.m.160 views

Allround Automations PL/SQL Developer < 11.0.6.1776 HTTP Insecure Update RCE

The version of Allround Automations PL/SQL Developer installed on the remote host is prior to 11.0.6.1776. It is, therefore, affected by a remote code execution vulnerability due to a failure to properly verify the origin or authenticity of update data sent via HTTP. A man-in-the-middle attacker...

8.1CVSS8.5AI score0.00944EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2016/04/29 12:0 a.m.30 views

Allround Automations PL/SQL Developer Installed

Binary data allautoplsqldeveloper.nbin...

7.3AI score
Exploits0References1
CNVD
CNVD
added 2016/04/26 12:0 a.m.3 views

Allround Automations PL/SQL Developer Arbitrary Code Execution Vulnerability

Allround Automations PL/SQL Developer is an integrated development environment for developing stored procedures for Oracle Databases. An arbitrary code execution vulnerability exists in Allround Automations PL/SQL Developer, which can be exploited by an attacker to execute arbitrary code...

10CVSS8.1AI score0.02465EPSS
Exploits1References1
NVD
NVD
added 2016/04/25 6:59 p.m.10 views

CVE-2016-2346

Allround Automations PL/SQL Developer 11 before 11.0.6 relies on unverified HTTP data for updates, which allows man-in-the-middle attackers to execute arbitrary code by modifying fields in the client-server data stream...

8.1CVSS8.3AI score0.00944EPSS
Exploits1References2
CVE
CVE
added 2016/04/25 6:0 p.m.63 views

CVE-2016-2346

CVE-2016-2346 affects Allround Automations PL/SQL Developer prior to 11.0.6.1776. The vulnerability arises from verifying HTTP update data, allowing a man-in-the-middle to modify the client‑server data stream and execute arbitrary code with the user’s privileges. Affected version: PL/SQL Develope...

8.1CVSS8.3AI score0.00944EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2016/04/25 6:0 p.m.15 views

CVE-2016-2346

Allround Automations PL/SQL Developer 11 before 11.0.6 relies on unverified HTTP data for updates, which allows man-in-the-middle attackers to execute arbitrary code by modifying fields in the client-server data stream...

8.3AI score0.00944EPSS
Exploits1References2
Rows per page
Query Builder