20 matches found
EUVD-2017-5858
Malware in sbrugna...
EUVD-2011-2386
Malware in sbrugna...
HP Connected Backup 8.6 / 8.8.6 Local Privilege Escalation
Tested on HP Connected Backup version 8.8.2.0 on Windows 7 x64 import os import sys import time import requests from bs4 import BeautifulSoup def sendrequestbody: url="http://localhost:16386/" headers = "Content-Type": "text/xml; charset=utf-8", 'SOAPAction': '""', "Set-Cookie":...
HP Connected Backup 8.6/8.8.6 - Local Privilege Escalation Exploit
Exploit for windows platform in category local exploits Tested on HP Connected Backup version 8.8.2.0 on Windows 7 x64 import os import sys import time import requests from bs4 import BeautifulSoup def sendrequestbody: url="http://localhost:16386/" headers = "Content-Type": "text/xml;...
HP Connected Backup 8.68.8.6 - Local Privilege Escalation
HP Connected Backup 8.68.8.6 - Local Privilege Escalation Tested on HP Connected Backup version 8.8.2.0 on Windows 7 x64 import os import sys import time import requests from bs4 import BeautifulSoup def sendrequestbody: url="http://localhost:16386/" headers = "Content-Type": "text/xml;...
HP Connected Backup 8.6/8.8.6 - Local Privilege Escalation
Tested on HP Connected Backup version 8.8.2.0 on Windows 7 x64 import os import sys import time import requests from bs4 import BeautifulSoup def sendrequestbody: url="http://localhost:16386/" headers = "Content-Type": "text/xml; charset=utf-8", 'SOAPAction': '""', "Set-Cookie":...
CVE-2017-14355
A potential security vulnerability has been identified in HPE Connected Backup versions 8.6 and 8.8.6. The vulnerability could be exploited locally to allow escalation of privilege...
Privilege escalation
A potential security vulnerability has been identified in HPE Connected Backup versions 8.6 and 8.8.6. The vulnerability could be exploited locally to allow escalation of privilege...
CVE-2017-14355
A potential security vulnerability has been identified in HPE Connected Backup versions 8.6 and 8.8.6. The vulnerability could be exploited locally to allow escalation of privilege...
CVE-2017-14355
CVE-2017-14355 affects HPE Connected Backup versions 8.6 and 8.8.6, with a local privilege escalation vulnerability described in multiple sources. The Connected Backup entries and related disclosures indicate a local-exploit path leading to elevated privileges on the host. Public references inclu...
CVE-2017-14355
A potential security vulnerability has been identified in HPE Connected Backup versions 8.6 and 8.8.6. The vulnerability could be exploited locally to allow escalation of privilege...
HP Connected Backup Elevation of Privilege Vulnerability
HP Connected Backup is the data protection solution. An elevation of privilege vulnerability exists in the implementation of HP Connected Backup v8.6, v8.8.6 that could allow a local attacker to gain elevated privileges on an affected device...
Autonomy Connected Backup Type 13 Command Injection (CVE-2011-2397)
A code execution vulnerability has been reported in Autonomy Connected Backup. The vulnerability is due to insufficient validation of certain commands by the Agent.exe process. A remote attacker may exploit this issue by sending a specially crafted XML file to the affected system. Successful...
Iron Mountain Connected Backup Opcode 13 Processing Command Injection
Added: 12/12/2011 CVE: CVE-2011-2397 BID: 50884 OSVDB: 77495 Background Iron Mountain Connected Backup is a solution for automatic online backup and recovery for Microsoft Windows and Mac OS X. An agent is installed on each computer that is to be backed up. The agent listens by default on TCP por...
Iron Mountain Connected Backup Opcode 13 Processing Command Injection
Added: 12/12/2011 CVE: CVE-2011-2397 BID: 50884 OSVDB: 77495 Background Iron Mountain Connected Backup is a solution for automatic online backup and recovery for Microsoft Windows and Mac OS X. An agent is installed on each computer that is to be backed up. The agent listens by default on TCP por...
Iron Mountain Connected Backup Opcode 13 Processing Command Injection
Added: 12/12/2011 CVE: CVE-2011-2397 BID: 50884 OSVDB: 77495 Background Iron Mountain Connected Backup is a solution for automatic online backup and recovery for Microsoft Windows and Mac OS X. An agent is installed on each computer that is to be backed up. The agent listens by default on TCP por...
CVE-2011-2397
The Agent service in Iron Mountain Connected Backup 8.4 allows remote attackers to execute arbitrary code via a crafted opcode 13 request that triggers use of the LaunchCompoundFileAnalyzer class to send request data to the System.getRunTime.exec method...
CVE-2011-2397
The CVE-2011-2397 affects Iron Mountain Connected Backup Agent service. A crafted opcode 13 request can trigger LaunchCompoundFileAnalyzer to send data to System.getRunTime.exec, enabling remote arbitrary code execution on the affected Windows endpoint. Public sources (SAINT/SAINT-derived advisor...
CVE-2011-2397
The Agent service in Iron Mountain Connected Backup 8.4 allows remote attackers to execute arbitrary code via a crafted opcode 13 request that triggers use of the LaunchCompoundFileAnalyzer class to send request data to the System.getRunTime.exec method...
KLA10126 ACE vulnerability in Connected Backup
An unspecified vulnerability was found in Connected Backup. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed request. Original advisories - Related products Connected-Backup CVE list...