CVE-2017-13754

Cross-site scripting XSS vulnerability in the "advanced settings - time server" module in Wibu-Systems CodeMeter before 6.50b allows remote attackers to inject arbitrary web script or HTML via the "server name" field in actions/ChangeConfiguration.html...

CVE-2017-13754

CVE-2017-13754 is an XSS flaw in Wibu-Systems CodeMeter (advanced settings – time server) where an attacker can inject script via the server name field in actions/ChangeConfiguration.html. Vulnerable until CodeMeter version 6.50b (and is embedded in some FactoryTalk Activation Manager releases pr...

CodeMeter 6.50 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Document Title: =============== Wibu Systems AG CodeMeter 6.50 - Persistent XSS Vulnerability References Source: ==================== http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-13754 CVE-ID: ======= CVE-2017-13754 Current Estimat...

CodeMeter 6.50 - Cross-Site Scripting

CodeMeter 6.50 - Cross-Site Scripting Document Title: =============== Wibu Systems AG CodeMeter 6.50 - Persistent XSS Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2074 ID: FB49498 Acknowledgements:...

Wibu Systems AG CodeMeter 6.50 Cross Site Scripting

Document Title: =============== Wibu Systems AG CodeMeter 6.50 - Persistent XSS Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2074 ID: FB49498 Acknowledgements: https://www.flickr.com/photos/vulnerabilitylab/36912680045/...

Wibu Systems CodeMeter v6.50 - (UI) XSS Web Vulnerability

Document Title: =============== Wibu Systems CodeMeter v6.50 - UI XSS Web Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2074 ID: FB49498 Acknowledgements: https://www.flickr.com/photos/vulnerabilitylab/36912680045/ Sources:...

Wibu Systems CodeMeter v6.50 - (UI) XSS Web Vulnerability

Document Title: =============== Wibu Systems CodeMeter v6.50 - UI XSS Web Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2074 ID: FB49498 Acknowledgements: https://www.flickr.com/photos/vulnerabilitylab/36912680045/ Sources:...

Wibu-Systems CodeMeter License Server Directory Traversal Vulnerability

Wibu-Systems CodeMeter is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2016 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

CodeMeter < 5.20 Local Privilege Escalation Vulnerability

According to its self-reported version, the CodeMeter WebAdmin server installed on the remote host is prior to 5.20a 5.20.1458.500. It is affected by insecure read/write permissions for the 'codemeter.exe' service, which a local attacker can exploit to gain elevated privileges via a trojan horse...

Codemeter privilege escalation

Weak service privileges...

CVE-2014-8419 - CodeMeter Weak Service Permissions

CodeMeter Weak Service Permissions Vendor Website : http://www.codemeter.com INDEX --------------------------------------- 1. Background 2. Description 3. Affected Products 4. Vulnerability 5. Solution 6. Credit 7. Disclosure Timeline 8. CVE 1. BACKGROUND ---------------------------------------...

CVE-2014-8419

Wibu-Systems CodeMeter Runtime before 5.20 uses weak permissions read and write access for all users for codemeter.exe, which allows local users to gain privileges via a Trojan horse file...

Design/Logic Flaw

Wibu-Systems CodeMeter Runtime before 5.20 uses weak permissions read and write access for all users for codemeter.exe, which allows local users to gain privileges via a Trojan horse file...

CVE-2014-8419

Wibu-Systems CodeMeter Runtime before 5.20 uses weak permissions read and write access for all users for codemeter.exe, which allows local users to gain privileges via a Trojan horse file...

CVE-2014-8419

CVE-2014-8419 affects CodeMeter Runtime prior to 5.20. The Windows service codemeter.exe is created with insecure Read/Write permissions for all users, enabling a local attacker to substitute the binary and gain SYSTEM privileges via a trojan-horse file. Several sources confirm the vulnerability ...

CodeMeter Virtual Directory Traversal Arbitrary File Access (remote check)

The CodeMeter WebAdmin server running on the remote host is affected by a directory traversal vulnerability due to a failure to properly sanitize HTTP requests for files in virtual directories. An unauthenticated, remote attacker can exploit this issue to retrieve the contents of arbitrary files ...

CodeMeter TCP Packet Parsing Unspecified Remote DoS

According to its self-reported version, the CodeMeter WebAdmin server installed on the remote host is prior to 4.40 4.40.687.500. It is affected by a flaw in parsing specially crafted packets sent to TCP port 22350, which a remote attacker can exploit to cause a denial of service. %NASLMINLEVEL...

CodeMeter WebAdmin Detection

The remote web server hosts CodeMeter WebAdmin, a web-based tool for working with CodeMeter hardware and software based copy protection technology. Note: for accurate results from this plugin and those that depend on it, you may need to enable the CodeMeter WebAdmin ports 22352, 22350 in your...

CodeMeter < 4.30.498.504 Virtual Directory Traversal Arbitrary File Access

According to its self-reported version, the CodeMeter WebAdmin server running on the remote host is prior to 4.30d 4.30.498.504. It is, therefore, affected by a directory traversal vulnerability due to a failure to properly sanitize HTTP requests for files in virtual directories. An...

Wibu-Systems CodeMeter Runtime TCP Packets Denial of Service Vulnerability

Wibu-Systems CodeMeter Runtime is prone to a denial of service DoS vulnerability. Copyright C 2012 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...