16 matches found
EUVD-2007-6241
Malware in sbrugna...
EUVD-2021-7500
Malicious code in bioql PyPI...
Vulnerability fixed in SonicWall Global VPN Client
A vulnerability has been fixed in the Global VPN Client from SonicWall. This vulnerability allows a local malicious person with elevated privileges to execute arbitrary code on the system. SonicWall has released updates to fix the vulnerability. fix. For more information, see the link below:...
SonicWall Global VPN Client DLL Search Order Hijacking via Application Installer
SonicWall Global VPN Client 4.10.7 installer 32-bit and 64-bit and earlier have a DLL Search Order Hijacking vulnerability in one of the installer components. Successful exploitation via a local attacker could result in command execution in the target system. CVE: CVE-2021-20051 Last updated: Apr...
SonicWall Global VPN Client Privilege Escalation via Application Installer
SonicWall Global VPN Client 4.10.5 installer 32-bit and 64-bit incorrect default file permission vulnerability leads to privilege escalation which potentially allows command execution in the host operating system. This vulnerability impacts 4.10.5 installer and earlier. CVE: CVE-2021-20037 Last...
SonicWall Global VPN client 安全漏洞
Sonicwall SonicWall Global VPN client is a Vpn software from SonicWall USA that works with the SonicWALL firewall. The software enables remote employees and vendors to access the company's network. A security vulnerability exists in SonicWall Global VPN Client 4.10.5 that stems from incorrect...
SonicWALL Global VPN Client Privilege Escalation
SEC Consult Security Advisory ========================================================================== title: SonicWALL Global VPN Client Local Privilege Escalation Vulnerability program: SonicWALL Global VPN Client vulnerable version: Global VPN Client = 4.0.0.835 possibly other versions...
SEC Consult SA-20090525-3 :: SonicWALL Global VPN Client Local Privilege Escalation Vulnerability
SEC Consult Security Advisory 20090525-3 ========================================================================== title: SonicWALL Global VPN Client Local Privilege Escalation Vulnerability program: SonicWALL Global VPN Client vulnerable version: Global VPN Client = 4.0.0.835 possibly other...
SonicOS Format String
SEC Consult Security Advisory ========================================================================== title: SonicOS Format String Vulnerability program: SonicWALL Global VPN Client vulnerable version: PRO 4100 SonicOS 4.0.0.2-51e Standard and Enhanced possibly other versions homepage:...
SonicWALL Global VPN Client 4.0 - Log File Remote Format String
source: https://www.securityfocus.com/bid/35093/info SonicWALL Global VPN Client is prone to a remote format-string vulnerability because it fails to properly sanitize user-supplied input before passing it as the format specifier to a formatted-printing function. Successfully exploiting this issu...
SonicWall Global VPN Client Detection
This script detects the installed version of SonicWall Global VPN Client. SPDX-FileCopyrightText: 2008 Ferdy Riphagen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SonicWALL Global VPN Client Detection
The SonicWALL Global VPN Client is installed on the remote system. This software can be used to establish secure remote connections. Script Written By Ferdy Riphagen Script distributed under the GNU GPLv2 License. Tenable grants a special exception for this plugin to use the library 'smbfunc.inc'...
Format string
Multiple format string vulnerabilities in the configuration file in SonicWALL GLobal VPN Client 3.1.556 and 4.0.0.810 allow user-assisted remote attackers to execute arbitrary code via format string specifiers in the 1 Hostname tag or the 2 name attribute in the Connection tag. NOTE: there might...
CVE-2007-6273
Multiple format string vulnerabilities in the configuration file in SonicWALL GLobal VPN Client 3.1.556 and 4.0.0.810 allow user-assisted remote attackers to execute arbitrary code via format string specifiers in the 1 Hostname tag or the 2 name attribute in the Connection tag. NOTE: there might...
CVE-2007-6273
The CVE-2007-6273 issue affects SonicWALL Global VPN Client versions 3.1.556 and 4.0.0.810, where the configuration file’s formatting strings in the Hostname tag and the Connection tag name attribute can be exploited by a user-assisted remote attacker to execute arbitrary code. The vulnerability ...
KLA10335 ACE vulnerability in SonicWall Global VPN client
Format string vulnerabilities were found in the SonicWall Global VPN client. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via specially designed format strings. Original advisories - Related products...