753 matches found
MS12-062: Vulnerability in System Center Configuration Manager Could Allow Elevation of Privilege (2741528)
The version of Microsoft System Center Configuration Manager, formerly known as Systems Management Server, installed on the remote host is potentially affected by a reflected cross-site scripting vulnerability. By tricking a user into clicking a specially crafted link, an attacker could gain...
Microsoft SMS / SCCM Installed (Windows)
Microsoft System Center Configuration Manager SCCM, formerly known as Systems Management Server SMS, a systems management application is installed on the remote Windows host. C Tenable, Inc. include"compat.inc"; if description scriptid62028; scriptversion"1.11";...
GS8100 Configuration Manager GUI CSRF Vulnerability
Exploit for hardware platform in category web applications db 88 d88b "" d8'8b d8' 8b ,adPPYba, ,adPPYba, ,adPPYba, 88 8b,dPPYba, ,adPPYba, d8YaaaaY8b I8 "" a8P88 I8 "" 88 88P' "8a a8" "8a d8""""""""8b "Y8ba, 8PP""""""" "Y8ba, 88 88 88 8b d8 d8' 8b aa 8I "8b, ,aa aa 8I 88 88 88 "8a, ,a8" d8' 8b...
Race condition
Race condition in partmgr.sys in Windows Partition Manager in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application that makes multiple simultaneous Plug and Play PnP Configuration Manager...
CVE-2012-0178
CVE-2012-0178 affects Windows Partition Manager (partmgr.sys) and stems from a race condition in handling device-relations requests. A crafted application that issues multiple simultaneous Plug and Play (PnP) Configuration Manager calls could allow local users to gain kernel-mode privileges on Wi...
Microsoft Windows Prtition Manager Privilege Elevation Vulnerability (2690533)
This host is missing an important security update according to Microsoft Bulletin MS12-033. OpenVAS Vulnerability Test $Id: secpodms12-033.nasl 5341 2017-02-18 16:59:12Z cfi $ Microsoft Windows Prtition Manager Privilege Elevation Vulnerability 2690533 Authors: Rachana Shetty Copyright: Copyright...
PT-2012-2376 · Microsoft · Windows Partition Manager +4
Name of the Vulnerable Software and Affected Versions: Windows Partition Manager versions in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 Description: The issue is related to an elevation of privilege vulnerability in the way Windows Partition...
CVE-2009-5086
Cross-site scripting XSS vulnerability in Appliance Configuration Manager ACM in Juniper IDP 4.1 before 4.1r3 and 4.2 before 4.2r1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2009-5086
CVE-2009-5086 concerns an XSS vulnerability in Juniper IDP ACM (Appliance Configuration Manager). Affected are IDP versions prior to 4.1r3 and prior to 4.2r1, where an attacker can inject arbitrary web script or HTML via unspecified vectors in the ACM web interface. The practical impact is that a...
Microsoft System Center Configuration Manager Client Installed
The Microsoft System Center Configuration Manager client, a management system client, is installed on the remote Windows host. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid55532; scriptversion"1.12"; scriptsetattributeattribute:"pluginmodificationdate",...
ZDI-11-089: Novell ZenWorks TFTPD Remote Code Execution Vulnerability
ZDI-11-089: Novell ZenWorks TFTPD Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-089 February 17, 2011 -- CVE ID: CVE-2010-4323 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Novell -- Affected Products: Novell Zenworks -- TippingPointTM IPS...
CVE-2010-4323
This CVE concerns the Novell Zenworks Configuration Manager TFTPD daemon (novell-tftp.exe). A heap-based buffer overflow in TFTPD’s request parsing allows remote code execution via crafted UDP requests sent to port 69. The vulnerability affects ZCM versions including 10.3.1, 10.3.2, 11.0 and earl...
CVE-2010-4323
Heap-based buffer overflow in novell-tftp.exe in Novell ZENworks Configuration Manager ZCM 10.3.1, 10.3.2, and 11.0, and earlier versions, allows remote attackers to execute arbitrary code via a long TFTP request...
Novell ZenWorks TFTPD Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell Zenworks Configuration Manager. Authentication is not required to exploit this vulnerability. The flaw exists within the novell-tftp.exe component which listens by default on UDP port 69. Wh...
Microsoft System Center Configuration Manager Management Point Detection
The remote service is a Management Point for a Microsoft System Center Configuration Manager server. It is used by client agents to communicate with the Configuration Manager. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid51836; scriptversion"1.9";...
Nagios XI 2009R1.2B Multiple CSRF
Advisory Information Advisory ID: NGENUITY-2010-006 Date published: Aug. 7, 2010 Class: Cross-Site Request Forgery CSRF Software Description Nagios XI is the commercial / enterprise version of the open source Nagios project. Vulnerability Description Nagios XI 2009R1.2B is vulnerable to multiple...
HP OpenView Client Configuration Manager Radia Notify Code Execution (CVE-2006-5782)
An authentication weakness vulnerability exists in the Radia Notify Daemon component of HP OpenView Client Configuration Manager. The flaw is created by improper handling of user supplied data passed to the affected Radia Notify Daemon on TCP port 3465. By sending a crafted message, the attacker...
CA20090123-01: Cohesion Tomcat Multiple Vulnerabilities (Updated - v1.1)
Title: CA20090123-01: Cohesion Tomcat Multiple Vulnerabilities CA Advisory Reference: CA20090123-01 CA Advisory Date: 2009-01-23 Reported By: n/a Impact: Refer to the CVE identifiers for details. Summary: Multiple security risks exist in Apache Tomcat as included with CA Cohesion Application...
HP OpenView Client Configuration Manager Default Credentials
The remote host is running HP OpenView Client Configuration Manager OVCCM, a PC software configuration management application. The remote installation of OVCCM is configured to use default credentials to control access. Knowing these, an attacker can gain control of the affected application...
CVE-2007-5413
HP OpenView Radia Integration Server, specifically httpd.tkd, is affected in CM Infrastructure v4.0–4.2i and CCM v2.0. The vulnerability arises from insufficient validation of URLs containing tilde references (e.g., ~root) in the HTTP server bound to TCP port 3465, enabling remote attackers to re...