Lucene search
K

119 matches found

Prion
Prion
added 2017/05/03 4:59 p.m.15 views

Heap overflow

Editions of Rapid7 AppSpider Pro prior to version 6.14.060 contain a heap-based buffer overflow in the FLAnalyzer.exe component. A malicious or malformed Flash source file can cause a denial of service condition when parsed by this component, causing the application to crash...

5CVSS7.6AI score0.01028EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2017/05/03 4:59 p.m.6 views

CVE-2017-5236

Editions of Rapid7 AppSpider Pro installers prior to version 6.14.060 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer...

7.8CVSS5.8AI score0.0093EPSS
Exploits0References1
NVD
NVD
added 2017/05/03 4:59 p.m.18 views

CVE-2017-5236

Editions of Rapid7 AppSpider Pro installers prior to version 6.14.060 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer...

7.8CVSS7.6AI score0.0093EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/05/03 4:0 p.m.28 views

CVE-2017-5236

Editions of Rapid7 AppSpider Pro installers prior to version 6.14.060 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer...

7.6AI score0.0093EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/05/03 4:0 p.m.23 views

CVE-2017-5240

Editions of Rapid7 AppSpider Pro prior to version 6.14.060 contain a heap-based buffer overflow in the FLAnalyzer.exe component. A malicious or malformed Flash source file can cause a denial of service condition when parsed by this component, causing the application to crash...

7.7AI score0.01028EPSS
Exploits0References1
CVE
CVE
added 2017/05/03 4:0 p.m.49 views

CVE-2017-5236

Rapid7 AppSpider Pro installers prior to version 6.14.060 are affected by a DLL preloading vulnerability. The installer can load a malicious DLL from its current working directory, enabling tampering during installation. CNVD-2017-10390 confirms this flaw; CVE-2017-5236 notes the affected pre-6.1...

7.8CVSS7.5AI score0.0093EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2017/05/03 4:0 p.m.52 views

CVE-2017-5240

Affected product: Rapid7 AppSpider Pro (before 6.14.060). Vulnerability: heap-based buffer overflow in the FLAnalyzer.exe component when parsing a malicious or malformed Flash source file. Impact: denial of service via application crash. Root cause: buffer overflow in FLAnalyzer.exe used during F...

7.5CVSS7.7AI score0.01028EPSS
Exploits0References1Affected Software1
rapid7community
rapid7community
added 2017/03/14 10:55 p.m.25 views

Protecting Your Web Apps with AppSpider Defend Until They Can Be Patched

AppSpider scans can detect exploitable vulnerabilities in your applications, but once these vulnerabilities are detected how long does it take your development teams to create code fixes for them? In some cases it could take several days to weeks before a fix/patch to resolve the vulnerability ca...

6.8AI score
Exploits0
CNVD
CNVD
added 2017/03/03 12:0 a.m.5 views

Rapid7 AppSpider Pro DLL Preloading Vulnerability

Rapid7 Nexpose is a suite of vulnerability management software from Rapid7 USA that can synthesize different scans to deeply probe a network. The software proactively scans configuration environments for errors, vulnerabilities, malware and provides guidance to reduce risk. A DLL preloading...

7.8CVSS6.8AI score0.00875EPSS
Exploits0References1
Prion
Prion
added 2017/03/02 8:59 p.m.16 views

Code injection

Rapid7 AppSpider Pro installers prior to version 6.14.053 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer...

6.8CVSS7.5AI score0.00875EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2017/03/02 8:59 p.m.16 views

CVE-2017-5233

Rapid7 AppSpider Pro installers prior to version 6.14.053 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer...

7.8CVSS7.6AI score0.00875EPSS
Exploits0References2
OSV
OSV
added 2017/03/02 8:59 p.m.6 views

CVE-2017-5233

Rapid7 AppSpider Pro installers prior to version 6.14.053 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer...

7.8CVSS5.8AI score0.00875EPSS
Exploits0References2
CVE
CVE
added 2017/03/02 8:0 p.m.56 views

CVE-2017-5233

CVE-2017-5233 involves a DLL preloading vulnerability in Rapid7 AppSpider Pro installers. Installers prior to version 6.14.053 could load a malicious DLL located in the current working directory when the installer is executed, allowing code execution under the context of the installer. Connected ...

7.8CVSS7.5AI score0.00875EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/03/02 8:0 p.m.15 views

CVE-2017-5233

Rapid7 AppSpider Pro installers prior to version 6.14.053 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer...

7.6AI score0.00875EPSS
Exploits0References2
exploitpack
exploitpack
added 2016/07/25 12:0 a.m.17 views

Rapid7 AppSpider 6.12 - Local Privilege Escalation

Rapid7 AppSpider 6.12 - Local Privilege Escalation Rapid7 AppSpider 6.12 Web Application Vulnerability Scanner Elevation Of Privilege Vendor: Rapid7, Inc. Product web page: https://www.rapid7.com Affected version: 6.12.10.1 Summary: While today's malicious attackers pursue a variety of goals,...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2016/07/25 12:0 a.m.29 views

Rapid7 AppSpider 6.12 - Local Privilege Escalation

Rapid7 AppSpider 6.12 Web Application Vulnerability Scanner Elevation Of Privilege Vendor: Rapid7, Inc. Product web page: https://www.rapid7.com Affected version: 6.12.10.1 Summary: While today's malicious attackers pursue a variety of goals, they share a preferred channel of attack - the...

7.4AI score
Exploits0
0day.today
0day.today
added 2016/07/25 12:0 a.m.35 views

Rapid7 AppSpider 6.12 - Privilege Escalation

Exploit for windows platform in category local exploits Rapid7 AppSpider 6.12 Web Application Vulnerability Scanner Elevation Of Privilege Vendor: Rapid7, Inc. Product web page: https://www.rapid7.com Affected version: 6.12.10.1 Summary: While today's malicious attackers pursue a variety of goals...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2016/07/22 12:0 a.m.24 views

Rapid7 AppSpider 6.12 Privilege Escalation

i? Rapid7 AppSpider 6.12 Web Application Vulnerability Scanner Elevation Of Privilege Vendor: Rapid7, Inc. Product web page: https://www.rapid7.com Affected version: 6.12.10.1 Summary: While today's malicious attackers pursue a variety of goals, they share a preferred channel of attack - the...

0.4AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2016/07/22 12:0 a.m.39 views

Rapid7 AppSpider 6.12 Web Application Vulnerability Scanner Elevation Of Privilege

Summary While today's malicious attackers pursue a variety of goals, they share a preferred channel of attack - the millions of custom web, mobile, and cloud applications companies deploy to serve their customers. AppSpider dynamically scans these applications for vulnerabilities across all moder...

6.1AI score
Exploits0
Rows per page
Query Builder