HP Insight Control Server Migration 7.3.0 and 7.3.1 OpenSSL Heartbeat Information Disclosure (Heartbleed)

According to its version, the HP Insight Control Server Migration install on the remote Windows host includes a bundled copy of OpenSSL that is affected by an information disclosure vulnerability. A remote attacker could read the contents of up to 64KB of server memory, potentially exposing...

DameWare Mini Remote Control Server 3.7x Pre-Authentication Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/9213/info A problem has been identified in the handling of pre-authentication packets by DameWare Mini Remote Control Server. Because of this, it may be possible for a remote attacker to gain unauthorized access to hosts...

bfcommand & control server 1.22/2.0/2.14 manager Multiple Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/14690/info BFCC and BFVCC server managers are vulnerable to multiple remote vulnerabilities. The first two issues are login bypass vulnerabilities. These issues allow remote, anonymous attackers to gain access to the...

Remote Control Server 1.6.2 - Denial of Service Exploit

No description provided by source. !/usr/local/bin/perl Remote Control Server DOS Exploit ------------------------------------ Infam0us Gr0up - Securiti Research Tested on Windows2000 SP4 Win NT Info: infamous.2hell.com $ARGC=@ARGV; if $ARGC !=1 print \n; print Remote Control Server DOS Exploit\n...

Free Download Manager Remote Control Server Buffer Overflow

No description provided by source. $Id: fdmauthheader.rb 9812 2010-07-13 22:11:40Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...

DameWare Mini Remote Control Server 3.7x Pre-Authentication Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/9213/info A problem has been identified in the handling of pre-authentication packets by DameWare Mini Remote Control Server. Because of this, it may be possible for a remote attacker to gain unauthorized access to hosts...

DameWare Mini Remote Control Server 3.7x Pre-Authentication Buffer Overflow Vulnerability (3)

No description provided by source. source: http://www.securityfocus.com/bid/9213/info A problem has been identified in the handling of pre-authentication packets by DameWare Mini Remote Control Server. Because of this, it may be possible for a remote attacker to gain unauthorized access to hosts...

H.248.1 Gateway Control Server Detection

Binary data 8271.prm...

H.248.1 Gateway Control Server Detection

Binary data 8267.prm...

CVE-2013-6205

Unspecified vulnerability in HP Rapid Deployment Pack RDP and Insight Control Server Deployment allows local users to obtain sensitive information, modify data, or cause a denial of service via unknown vectors...

CVE-2013-6205

CVE-2013-6205 affects HP Rapid Deployment Pack (RDP) and HP Insight Control Server Deployment. The HP security bulletin (HPSBGN02970 rev.1) documents multiple remote vulnerabilities impacting confidentiality, integrity, and availability, with CVE-2013-6205 rated CVSS 2.0 base score 4.1 (AV:L/AC:M...

CVE-2013-6206

HP Rapid Deployment Pack (RDP) and HP Insight Control Server Deployment are affected by CVE-2013-6206. The vulnerability enables remote attackers to obtain sensitive information, modify data, or trigger a denial of service via unknown vectors. CVSS v2 base score is 9.0 (HIGH) with Network attack ...

CVE-2013-6206

Unspecified vulnerability in HP Rapid Deployment Pack RDP and Insight Control Server Deployment allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors...

Microsoft Ships IE 10 Zero Day Fix-It Tool

Microsoft last night released a Fix-It tool as a temporary mitigation for a zero-day vulnerability in Internet Explorer 10 being exploited by two hacker groups against the Veterans of Foreign Wars in the U.S. as well as a French aerospace manufacturer. IE 9 also contains the same use-after free...

Cryptolocker Ransomware makes different Bitcoin wallet for each victim

When you’re online, you expose your vulnerability to malicious virus that have been growing in virulence and ferocity over the last few years. Among home PC users, you may think that you protected from malicious software by Installing an effective, trusted antivirus solution, but most if the...

Oil, Energy Watering Hole Attacks Linked to DOL attack

A string of watering hole attacks targeting oil and energy companies dating back to May could be linked to similar attacks against the U.S. Department of Labor website. Researchers at Cisco discovered the compromised domains of 10 oil and energy companies worldwide, including hydroelectric plants...

Obad Trojan First to Spread Via Mobile Botnet

The keepers of the mobile Obad Trojan realize the window of opportunity they have to spread the malware on Android devices may be closing since the vulnerability the Trojan exploits has been patched in Android 4.3. That could explain why Kaspersky Lab researchers have spotted a recent spike in...

CISCO vulnerability allows remote attacker to take control of Windows system

Cisco has fixed a critical vulnerability in Secure Access Control Server for Windows that could allow remote attackers to execute arbitrary commands and take control of the underlying operating system. Cisco Secure ACS is an application that allows companies to centrally manage access to network...

CISCO vulnerability allows remote attacker to take control of Windows system

Cisco has fixed a critical vulnerability in Secure Access Control Server for Windows that could allow remote attackers to execute arbitrary commands and take control of the underlying operating system. Cisco Secure ACS is an application that allows companies to centrally manage access to network...

Design/Logic Flaw

The EAP-FAST authentication module in Cisco Secure Access Control Server ACS 4.x before 4.2.1.15.11, when a RADIUS server configuration is enabled, does not properly parse user identities, which allows remote attackers to execute arbitrary commands via crafted EAP-FAST packets, aka Bug ID...