Lucene search
K

47 matches found

NVD
NVD
added 2014/04/10 8:55 p.m.17 views

CVE-2013-7366

The SAP Software Deployment Manager SDM, in certain unspecified conditions, allows remote attackers to cause a denial of service via vectors related to failed authentications...

5CVSS6.6AI score0.01723EPSS
Exploits0References5
Prion
Prion
added 2014/04/10 8:55 p.m.18 views

Design/Logic Flaw

The SAP Software Deployment Manager SDM, in certain unspecified conditions, allows remote attackers to cause a denial of service via vectors related to failed authentications...

5CVSS7.2AI score0.01723EPSS
Exploits0References5
Cvelist
Cvelist
added 2014/04/10 3:0 p.m.22 views

CVE-2013-7366

The SAP Software Deployment Manager SDM, in certain unspecified conditions, allows remote attackers to cause a denial of service via vectors related to failed authentications...

6.6AI score0.01723EPSS
Exploits0References5
CVE
CVE
added 2014/04/10 3:0 p.m.41 views

CVE-2013-7366

The CVE-2013-7366 entry concerns SAP Software Deployment Manager (SDM). In certain unspecified conditions, it allows remote attackers to cause a denial of service via vectors related to failed authentications. Reported impact is a Partial Availability DoS with CVSS v2 base score 5.0 (Network atta...

5CVSS6.8AI score0.01723EPSS
Exploits0References5Affected Software1
exploitpack
exploitpack
added 2013/05/26 12:0 a.m.23 views

SAS Integration Technologies Client 9.31_M1 SASspk.dll - Stack Overflow

SAS Integration Technologies Client 9.31M1 SASspk.dll - Stack Overflow !-- SAS Integration Technologies Client 9.31M1 SASspk.dll Stack-based Overflow Vendor: SAS Institute Inc. Product web page: http://www.sas.com Affected version: Deployment Manager 9.3.0.0 Model 12.05, TS1M2 SAS Integration...

0.8AI score
Exploits0
Exploit DB
Exploit DB
added 2013/05/26 12:0 a.m.46 views

SAS Integration Technologies Client 9.31_M1 'SASspk.dll' - Stack Overflow

!-- SAS Integration Technologies Client 9.31M1 SASspk.dll Stack-based Overflow Vendor: SAS Institute Inc. Product web page: http://www.sas.com Affected version: Deployment Manager 9.3.0.0 Model 12.05, TS1M2 SAS Integration Technologies Client 9.31M1 Summary: SAS Integration Technologies provides...

7.4AI score
Exploits0
0day.today
0day.today
added 2013/05/25 12:0 a.m.45 views

SAS Integration Technologies Client 9.31_M1 Buffer Overflow

The SASspk module SASspk.dll version 9.310.0.11307, has a function called 'RetrieveBinaryFile' which has one parameter called 'bstrFileName' which takes arguments as strings as defined in the function itself as ISPKBinaryFile from the SASPackageRetrieve library. Stack-based buffer overflow was...

8.1AI score
Exploits0
CVE
CVE
added 2013/01/04 9:0 p.m.41 views

CVE-2012-6348

CVE-2012-6348 affects Centrify Deployment Manager 2.1.0.283 (as distributed in Centrify Suite before 2012.5). Affected component is the use of insecure temporary files that can be targeted via symlink attacks: adcheckDMoutput and centrify.cmd.0. Local attackers can overwrite arbitrary files and, ...

3.3CVSS6.7AI score0.00314EPSS
Exploits1References7Affected Software2
Cvelist
Cvelist
added 2013/01/04 9:0 p.m.25 views

CVE-2012-6348

Centrify Deployment Manager 2.1.0.283, as distributed in Centrify Suite before 2012.5, allows local users to 1 overwrite arbitrary files via a symlink attack on the adcheckDMoutput temporary file, or 2 overwrite arbitrary files and consequently gain privileges via a symlink attack on the...

6.5AI score0.00314EPSS
Exploits1References7
securityvulns
securityvulns
added 2013/01/02 12:0 a.m.73 views

Local root exploit for Centrify Deployment Manager < v2.1.0.283 local root

/Local root exploit for Centrify Deployment Manager v2.1.0.283 local root, Centrify released a fix very quickly - nice vendor response. http://vapid.dhs.org/exploits/centrifylocalr00t.c CVE-2012-6348 12/17/2012 http://vapid.dhs.org/advisories/centrifydeploymentmanagerinsecuretmp2.html Greetings...

3.3CVSS0.2AI score0.00314EPSS
Exploits1
securityvulns
securityvulns
added 2013/01/02 12:0 a.m.52 views

Centrify Deployment Manager symbolic links vulnerability

Insecure temporary files creation...

3.3CVSS1.9AI score0.00314EPSS
Exploits1References3Affected Software1
Packet Storm
Packet Storm
added 2012/12/18 12:0 a.m.36 views

Centrify Deployment Manager 2.1.0.283 Local Root

/Local root exploit for Centrify Deployment Manager v2.1.0.283 local root, Centrify released a fix very quickly - nice vendor response. CVE-2012-6348 12/17/2012 http://vapid.dhs.org/advisories/centrifydeploymentmanagerinsecuretmp2.html Greetings vladz, Thanks for the inotify & syscall technique...

3.3CVSS6.7AI score0.00314EPSS
Exploits1
securityvulns
securityvulns
added 2012/12/11 12:0 a.m.37 views

Centrify Deployment Manager v2.1.0.283 local root

Centrify Deployment Manager v2.1.0.283 local root 12/7/2012 Taking a little longer look at the software, I managed to win a race condition and get root with files in /tmp. Here is my analysis: root@h0g:/tmp ls -l /etc/shadow -r-------- 1 root shadow 1010 Dec 7 21:42 /etc/shadow root@h0g:/tmp...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2012/12/09 12:0 a.m.25 views

Centrify Deployment Manager 2.1.0.283 - Local Privilege Escalation

Centrify Deployment Manager 2.1.0.283 - Local Privilege Escalation Centrify Deployment Manager v2.1.0.283 local root 12/7/2012 Taking a little longer look at the software, I managed to win a race condition and get root with files in /tmp. Here is my analysis: root@h0g:/tmp ls -l /etc/shadow...

0.6AI score
Exploits0
securityvulns
securityvulns
added 2012/12/09 12:0 a.m.47 views

Centrify Deployment Manager v2.1.0.283

Centrify Deployment Manager v2.1.0.283 While at a training session for centrify, I noticed poor handling of files in /tmp. I was able to overwrite /etc/shadow with the contents of adcheckDMoutput. I am sure there are more vulnerabilities to be exploit, maybe a local root - but being this is a...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2012/12/09 12:0 a.m.26 views

Centrify Deployment Manager 2.1.0.283 - Local Privilege Escalation

Centrify Deployment Manager v2.1.0.283 local root 12/7/2012 Taking a little longer look at the software, I managed to win a race condition and get root with files in /tmp. Here is my analysis: root@h0g:/tmp ls -l /etc/shadow -r-------- 1 root shadow 1010 Dec 7 21:42 /etc/shadow root@h0g:/tmp...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2012/12/08 12:0 a.m.25 views

Centrify Deployment Manager 2.1.0.283 Local Root

Centrify Deployment Manager v2.1.0.283 local root 12/7/2012 Taking a little longer look at the software, I managed to win a race condition and get root with files in /tmp. Here is my analysis: root@h0g:/tmp ls -l /etc/shadow -r-------- 1 root shadow 1010 Dec 7 21:42 /etc/shadow root@h0g:/tmp...

0.4AI score
Exploits0
0day.today
0day.today
added 2012/12/08 12:0 a.m.29 views

Centrify Deployment Manager 2.1.0.283 Local Root Vulnerability

Centrify Deployment Manager version 2.1.0.283 suffers from a race condition in /tmp that allows for local root privilege escalation. Centrify Deployment Manager v2.1.0.283 local root 12/7/2012 Taking a little longer look at the software, I managed to win a race condition and get root with files i...

6.8AI score
Exploits0
0day.today
0day.today
added 2012/12/04 12:0 a.m.31 views

Centrify Deployment Manager v2.1.0.283 File Overwrite Vulnerability

Centrify Deployment Manager v2.1.0.283 version 2.1.0.283 appears to suffer from a root-level file overwrite vulnerability due to an insecure use of /tmp. Centrify Deployment Manager v2.1.0.283 While at a training session for centrify, I noticed poor handling of files in /tmp. I was able to...

6.9AI score
Exploits0
NVD
NVD
added 2010/07/02 8:30 p.m.9 views

CVE-2010-2625

Unspecified vulnerability in the Client Service for DPM in Hitachi ServerConductor / Deployment Manager 01-00, 01-01, and 06-00 through 06-00-/A; ServerConductor / Deployment Manager Standard Edition and Enterprise Edition 07-50 through 07-55, and 07-57 through 07-59; and...

7.8CVSS6.4AI score0.01396EPSS
Exploits1References4
Rows per page
Query Builder