78 matches found
VulnCheck KEV: CVE-2014-8357
backupsettings.html in the web administrative portal in Zhone zNID GPON 2426A before S3.0.501 places a session key in a URL, which allows remote attackers to obtain arbitrary user passwords via the sessionKey parameter in a getConfig action to backupsettings.conf...
CVE-2014-8357
backupsettings.html in the web administrative portal in Zhone zNID GPON 2426A before S3.0.501 places a session key in a URL, which allows remote attackers to obtain arbitrary user passwords via the sessionKey parameter in a getConfig action to backupsettings.conf...
CVE-2014-8357
backupsettings.html in the web administrative portal in Zhone zNID GPON 2426A before S3.0.501 places a session key in a URL, which allows remote attackers to obtain arbitrary user passwords via the sessionKey parameter in a getConfig action to backupsettings.conf. Recent assessments: Assessed...
Google Android - IOMX 'getConfig'/'getParameter' Information Disclosure
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=711 Android: Information Disclosure in IOMX getConfig/getParameter Platform: Verified on google/razor/flo:6.0.1/MMB29O/2459718:user/release-keys Class: Information Disclosure Summary: The GETCONFIG and GETPARAMETER calls on IOMX ar...
Android - IOMX getConfig/getParameter Information Disclosure
Exploit for Android platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=711 Android: Information Disclosure in IOMX getConfig/getParameter Platform: Verified on google/razor/flo:6.0.1/MMB29O/2459718:user/release-keys Class: Information Disclosure...
Computer Associates License Server GETCONFIG Overflow
No description provided by source. $Id: calicservgetconfig.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms...
Computer Associates License Client - GETCONFIG Overflow (Metasploit)
$Id: calicclntgetconfig.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Computer Associates License Server GETCONFIG Overflow
$Id: calicservgetconfig.rb 8478 2010-02-13 16:16:13Z patrickw $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Computer Associates License Client GETCONFIG Overflow
$Id: calicclntgetconfig.rb 8478 2010-02-13 16:16:13Z patrickw $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Computer Associates License Service GETCONFIG buffer overflow
Added: 12/14/2005 CVE: CVE-2005-0581 BID: 12705 OSVDB: 14389 Background The License service comes with most Computer Associates products and exchanges license information over ports 10202/tcp and 10203/tcp. Problem A buffer overflow vulnerability exists in the processing of GETCONFIG messages...
Computer Associates License Service GETCONFIG buffer overflow
Added: 12/14/2005 CVE: CVE-2005-0581 BID: 12705 OSVDB: 14389 Background The License service comes with most Computer Associates products and exchanges license information over ports 10202/tcp and 10203/tcp. Problem A buffer overflow vulnerability exists in the processing of GETCONFIG messages...
Computer Associates License Service GETCONFIG buffer overflow
Added: 12/14/2005 CVE: CVE-2005-0581 BID: 12705 OSVDB: 14389 Background The License service comes with most Computer Associates products and exchanges license information over ports 10202/tcp and 10203/tcp. Problem A buffer overflow vulnerability exists in the processing of GETCONFIG messages...
CVE-2005-1019
Buffer overflow in the getConfig function in Aeon 0.2a and earlier allows local users to gain privileges via a long HOME environment variable...
CVE-2005-0581
Multiple buffer overflows in Computer Associates CA License Client and Server 0.1.0.15 allow remote attackers to execute arbitrary code via 1 certain long fields in the Checksum item in a GCR request, 2 a long IP address, hostname, or netmask values in a GCR request, 3 a long last parameter in a...
CVE-2005-1019
CVE-2005-1019 affects Aeon 0.2a and earlier, where a buffer overflow in the getConfig function lets local users gain privileges via a long HOME environment variable. The CVSSv2 base score is 7.2 (HIGH) with Local attack vector and no authentication required; confidentiality, integrity, and availa...
CVE-2005-1019
Buffer overflow in the getConfig function in Aeon 0.2a and earlier allows local users to gain privileges via a long HOME environment variable...
calicclnt_getconfig.pm
This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...
iDEFENSE Security Advisory 03.02.05: Computer Associates License Client/Server GETCONFIG Buffer Overflow
Computer Associates License Client/Server GETCONFIG Buffer Overflow iDEFENSE Security Advisory 03.02.05 www.idefense.com/application/poi/display?id=213&type=vulnerabilities March 2, 2005 I. BACKGROUND The Computer Associates License Client/Server applications provide a method for CA products to...