Sonicwall SonicWall NetExtender Windows client Code Issue Vulnerability

Sonicwall NetExtender Windows client is a Windows-based SSL VPN Virtual Private Network client application from Sonicwall, Inc. A security vulnerability exists in SonicWall NetExtender Windows client version 10.2.300 and earlier, the source of which allows a local attacker to gain elevated...

SonicWall NetExtender Windows client input validation error vulnerability

SonicWall NetExtender Windows client is a Windows-based SSL VPN Virtual Private Network client application from SonicWall USA. An input validation error vulnerability exists in SonicWall NetExtender Windows client version 9.0.815 and earlier. A local attacker can exploit the vulnerability by...

CVE-2020-5131

SonicWall NetExtender Windows client vulnerable to arbitrary file write vulnerability, this allows attacker to overwrite a DLL and execute code with the same privilege in the host operating system. This vulnerability impact SonicWall NetExtender Windows client version 9.0.815 and earlier...

CVE-2020-5131

SonicWall NetExtender Windows client vulnerable to arbitrary file write vulnerability, this allows attacker to overwrite a DLL and execute code with the same privilege in the host operating system. This vulnerability impact SonicWall NetExtender Windows client version 9.0.815 and earlier...

Design/Logic Flaw

SonicWall NetExtender Windows client vulnerable to arbitrary file write vulnerability, this allows attacker to overwrite a DLL and execute code with the same privilege in the host operating system. This vulnerability impact SonicWall NetExtender Windows client version 9.0.815 and earlier...

CVE-2020-5131

SonicWall NetExtender Windows client vulnerable to arbitrary file write vulnerability, this allows attacker to overwrite a DLL and execute code with the same privilege in the host operating system. This vulnerability impact SonicWall NetExtender Windows client version 9.0.815 and earlier...

CVE-2020-5131

CVE-2020-5131 affects SonicWall NetExtender Windows client up to version 9.0.815. The vulnerability is an arbitrary file write that enables overwriting a DLL, allowing code execution with the same privileges on the host OS. The CVE is described in multiple sources (e.g., Red Hat advisory and CNVD...

SonicWall NetExtender arbitrary file write vulnerability

SonicWall NetExtender Windows client vulnerable to arbitrary file write vulnerability, this allows attacker to overwrite a DLL and execute code with the same privilege in the host operating system. CVE: CVE-2020-5131 Last updated: July 16, 2020, 9:01 a.m...

Dell SonicWall NetExtender Privilege Escalation Vulnerability - Windows

Dell SonicWall NetExtender is prone to a privilege escalation vulnerability. This VT has been deprecated and replaced by the VT SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Dell SonicWall NetExtender Detection (Windows SMB Login)

Detects the installed version of Dell SonicWall NetExtender on Windows. The script logs in via smb, searches for SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Dell SonicWall NetExtender with firmware unquoted Windows search path vulnerability

Dell SonicWall NetExtender is the remote vpn client in the Secure Mobile Access solution from Dell USA. An unquoted Windows search path vulnerability exists in Dell SonicWall NetExtender with firmware versions prior to 7.5.1.2, and versions 8.x prior to 8.0.0.3, which allows a local user to gain...

CVE-2015-4173

Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender before 7.5.227 and 8.0.x before 8.0.238, as used in the SRA firmware before 7.5.1.2-40sv and 8.x before 8.0.0.3-23sv, allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE%...

Design/Logic Flaw

Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender before 7.5.227 and 8.0.x before 8.0.238, as used in the SRA firmware before 7.5.1.2-40sv and 8.x before 8.0.0.3-23sv, allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE%...

CVE-2015-4173

Dell SonicWall NetExtender is affected by CVE-2015-4173, a local privilege-escalation due to an unquoted Windows search path in the autorun value. Affected as: NetExtender before 7.5.227 and 8.0.x before 8.0.238, used with SRA firmware before 7.5.1.2-40sv and 8.x before 8.0.0.3-23sv. Root cause: ...

CVE-2015-4173

Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender before 7.5.227 and 8.0.x before 8.0.238, as used in the SRA firmware before 7.5.1.2-40sv and 8.x before 8.0.0.3-23sv, allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE%...

Dell SonicWall NetExtender privilege escalation

Binary planting vulnerability...

Dell SonicWall NetExtender Unquoted Autorun Privilege Escalation

Dell SonicWall NetExtender Unquoted Autorun Privilege Escalation Vendor Website : http://www.sonicwall.com INDEX --------------------------------------- 1. CVE 2. Background 3. Description 4. Affected Products 5. Solution 6. Credit 7. Disclosure Timeline 1. CVE...

SonicWall SSL-VPN NetExtender ActiveX Control Buffer Overflow

No description provided by source. $Id: sonicwalladdrouteentry.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

SonicWall SSL-VPN NetExtender ActiveX Control Buffer Overflow (CVE-2007-5603)

An arbitrary code execution vulnerability has been reported in SonicWall SSL-VPN NetExtender. The vulnerability is due to insufficient length validation by an ActiveX control. A remote attacker may exploit this vulnerability by sending a specially crafted request to an affected service. Successfu...

SonicWALL SSL-VPN - NetExtender ActiveX Control Buffer Overflow (Metasploit)

$Id: sonicwalladdrouteentry.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...