78 matches found
CVE-2020-37042
Frigate Professional 3.36.0.9 contains a local buffer overflow vulnerability in the 'Find Computer' feature that allows attackers to execute arbitrary code by overflowing the computer name input field. Attackers can craft a malicious payload that triggers a buffer overflow, enabling code executio...
PT-2026-5482
Name of the Vulnerable Software and Affected Versions Frigate Professional version 3.36.0.9 Description Frigate Professional 3.36.0.9 contains a local buffer overflow in the 'Find Computer' feature. An attacker can execute arbitrary code by overflowing the computer name input field. A malicious...
EUVD-2008-1127
Malware in sbrugna...
Provisioning Services Target Devices Start with MAC Address as the Computer Name
When booting, VMware ESX target devices replace computer name with MAC Address...
CVE-2022-29589
Crypt Server before 3.3.0 allows XSS in the index view. This is related to serial, computername, and username...
CVE-2021-32960
Rockwell Automation FactoryTalk Services Platform v6.11 and earlier, if FactoryTalk Security is enabled and deployed contains a vulnerability that may allow a remote, authenticated attacker to bypass FactoryTalk Security policies based on the computer name. If successfully exploited, this may all...
Security feature bypass
Rockwell Automation FactoryTalk Services Platform v6.11 and earlier, if FactoryTalk Security is enabled and deployed contains a vulnerability that may allow a remote, authenticated attacker to bypass FactoryTalk Security policies based on the computer name. If successfully exploited, this may all...
CVE-2021-32960 Rockwell Automation FactoryTalk Services Platform Protection Mechanism Failure
Rockwell Automation FactoryTalk Services Platform v6.11 and earlier, if FactoryTalk Security is enabled and deployed contains a vulnerability that may allow a remote, authenticated attacker to bypass FactoryTalk Security policies based on the computer name. If successfully exploited, this may all...
FactoryTalk Services Platform安全漏洞
The Rockwell Automation FactoryTalk Services Platform is a suite of services platforms from Rockwell Automation, Inc. that consists of multiple products that provide routine services to applications such as diagnostic information, health monitoring, and real-time data access. A security...
Gargamel - A Forensic Evidence Acquirer
A Forensic Evidence Acquirer Compile Assuming you have Rust 1.41+ installed. Open terminal in the project directory and to compile a release build type cargo build --release Debug build can be compiled using cargo build Compiled executable is located at target/release/gargamel.exe or...
Exploit for CVE-2020-1472
Zerologon CVE-2020-1472 This script is made for bulk checkin...
Exploit for CVE-2020-1472
ZeroLogon testing script A Python script that uses the Impack...
Exploit for CVE-2020-1472
ZeroLogon testing script A Python script that uses the Impack...
Prime95 Version 29.8 build 6 - Buffer Overflow (SEH)
Prime95 Version 29.8 build 6 - Buffer Overflow SEH Exploit Title: Prime95 Version 29.8 build 6 - Buffer Overflow SEH Date: 2019-12-22 Vendor Homepage: https://www.mersenne.org Software Link: http://www.mersenne.org/ftproot/gimps/p95v298b6.win32.zip Exploit Author: Achilles Tested Version: 29.8...
Free IP Switcher 3.1 - Computer Name Denial of Service (PoC)
Free IP Switcher 3.1 - Computer Name Denial of Service PoC Exploit Title: Free IP Switcher 3.1 - Denial of Service PoC Discovery by: Victor Mondragón Discovery Date: 2018-02-14 Vendor Homepage: http://www.eusing.com/index.html Software Link: http://www.eusing.com/ipscan/freeipscanner.htm Tested...
Domain Trust broken on new versions of a domain-joined layer because the computer name has changed
When creating a Platform Layer, it's normal to join it to the domain and leave it joined to the domain. When you add another version to your platform layer, you find that the Computer Name has changed, and that breaks domain trust. On the packaging machine, when you attempt to log on, you receive...
CVE-2018-13252
Entrust Datacard Syntera CS 5.x has XSS via the name field of "Domain or Computer Name" in the login page...
CVE-2018-13252
Entrust Datacard Syntera CS 5.x has XSS via the name field of "Domain or Computer Name" in the login page...
CVE-2018-12999
Incorrect Access Control in AgentTrayIconServlet in Zoho ManageEngine Desktop Central 10.0.255 allows attackers to delete certain files on the web server without login by sending a specially crafted request to the server with a computerName=../ substring to the /agenttrayicon URI...
XenMobile: How to use PKI to create a certificate using the computer name?
On certain environments it is necesary to create a certificate using the computer name instead the username...