SAP SOAP RFC SXPG_COMMAND_EXECUTE Remote Command Execution

This module abuses the SAP NetWeaver SXPGCOMMANDEXECUTE function, on the SAP SOAP RFC Service, to execute remote commands. This module needs SAP credentials with privileges to use the /sap/bc/soap/rfc in order to work. The module has been tested successfully on Windows 2008 64-bit and Linux 64-bi...

FreeBSD Ports: chromium

The remote host is missing an update to the system as announced in the referenced advisory. VID 209c068d-28be-11e2-9160-00262d5ed8ee OpenVAS Vulnerability Test $ Description: Auto generated from VID 209c068d-28be-11e2-9160-00262d5ed8ee Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

Google Chrome < 20.0.1132.43 Multiple Vulnerabilities

Binary data 800967.prm...

Google Chrome < 20.0.1132.43 Multiple Vulnerabilities

Binary data 6508.pasl...

CVE-2012-2496

A certain Java applet in the VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR7 on 64-bit Linux platforms does not properly restrict use of Java components, which allows remote attackers to execute arbitrary code via a crafted web...

[SECURITY] [DSA 2189-1] chromium-browser security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2189-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano March 10, 2011 http://www.debian.org/security/faq -...

CVE-2010-4574

Removed by vendor...

IBM Installation Manager iim URI Handling Code Execution

IBM Installation Manager IIM is a software tool that helps to install, update, modify, and install packages. It helps to manage IBM applications or packages by providing tools to keep packages up to date, modify the packages, manage the licenses for those packages, and uninstall the packages from...

RealNetworks RealPlayer Multiple Code Execution Vulnerabilities (Linux)

This host is installed with RealPlayer which is prone to multiple code execution vulnerabilities. OpenVAS Vulnerability Test $Id: secpodrealplayermultcodeexecvulnlin.nasl 5401 2017-02-23 09:46:07Z teissa $ RealNetworks RealPlayer Multiple Code Execution Vulnerabilities Linux Authors: Antu Sanadi...

Stack overflow

Stack-based buffer overflow in the DtbClsLogin function in NovaStor NovaNET 12 allows remote attackers to 1 execute arbitrary code on Linux platforms via a long username field during backup domain authentication, related to libnnlindtb.so; or 2 cause a denial of service daemon crash on Windows...

CVE-2009-0849

NovaStor NovaNET 12 is affected by a stack-based buffer overflow in the DtbClsLogin function. On Linux, a long username during backup domain authentication can lead to remote code execution via libnnlindtb.so; on Windows, a long username can cause a daemon crash (DoS) via nnwindtb.dll. The vulner...

Avahi Denial of Service Vulnerability

This host is installed with Avahi and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodavahidosvuln.nasl 4917 2017-01-02 14:43:20Z cfi $ Avahi Denial of Service Vulnerability Authors: Sujit Ghosal Copyright c 2008 SecPod, http://www.secpod.com This program is fre...

Avahi Denial of Service Vulnerability

Avahi is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Linux Kernel Stream Control Transmission Protocol Violation Vulnerability

This host has Linux Kernel Stream Control Transmission Protocol SCTP implementation and is prone to Protocol Violation Vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

gld 1.4 (Postfix Greylisting Daemon) Remote Format String Exploit

No description provided by source. / 0x82-meOw-linuxerforever - gld 1.4 remote overflow format string exploit. c 2005 Team INetCop Security. Nickname of this code is, Kill two bird with one stone.' or, One shot, two kill!.' hehehe ;-D Advisory URL:...

advRX181104.txt

| REXOTECdotCOM | |=-----= ADV RX171104 - Cscope :: Race condition on temporary file -----=| | | |=--- - INFORMATION ----------------------------------------------------------------------| VulnDiscovery: 2003/05/21 Release Date : 2004/11/17 Author : Gangstuck / Psirac Application : Cscope Affecte...

Oracle9i Database - Default Library Directory Privilege Escalation

source: https://www.securityfocus.com/bid/10829/info Oracle database implementations are reportedly prone to a default library directory privilege escalation vulnerability. This issue arises due to a default configuration error that will permit the attacker to replace libraries required by setuid...

Veritas NetBackup 3.54.55.0 - Multiple Local Memory Corruption Vulnerabilities (1)

Veritas NetBackup 3.54.55.0 - Multiple Local Memory Corruption Vulnerabilities 1 source: https://www.securityfocus.com/bid/10226/info Multiple unspecified local buffer overrun and format string vulnerabilities have been reported to exist in various setuid Veritas NetBackup binaries. These issues...

Veritas NetBackup 3.54.55.0 - Multiple Local Memory Corruption Vulnerabilities (2)

Veritas NetBackup 3.54.55.0 - Multiple Local Memory Corruption Vulnerabilities 2 source: https://www.securityfocus.com/bid/10226/info Multiple unspecified local buffer overrun and format string vulnerabilities have been reported to exist in various setuid Veritas NetBackup binaries. These issues...

Veritas NetBackup 3.5/4.5/5.0 - Multiple Local Memory Corruption Vulnerabilities (3)

source: https://www.securityfocus.com/bid/10226/info Multiple unspecified local buffer overrun and format string vulnerabilities have been reported to exist in various setuid Veritas NetBackup binaries. These issues may be exploited to execute arbitrary code with root privileges. It should be not...