Lucene search
K

224 matches found

Cvelist
Cvelist
added 2014/04/16 2:5 a.m.25 views

CVE-2014-2439

Unspecified vulnerability in the Oracle Secure Global Desktop SGD component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Workspace Web Application...

5.5AI score0.01756EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2014/02/05 12:0 a.m.37 views

Oracle Secure Global Desktop Multiple Vulnerabilities (January 2014 CPU)

The remote host has a version of Oracle Secure Global Desktop installed that is affected by multiple vulnerabilities : - Specially crafted requests sent with chunked transfer encoding could allow a remote attacker to perform a 'limited' denial of service attack on the Tomcat server. CVE-2012-3544...

6.8CVSS8AI score0.11001EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2014/02/05 12:0 a.m.13 views

Oracle Secure Global Desktop Unsupported Version Detection

According to its self-reported version number, the installation of Oracle Secure Global Desktop on the remote host is no longer supported. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it is likely to contain security...

5.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/11/01 12:0 a.m.19 views

Oracle Secure Global Desktop Administration Console Detection

Binary data oraclesecureglobaldesktophttpdetect.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/11/01 12:0 a.m.21 views

Oracle Secure Global Desktop ttaauxserv Remote Denial of Service (remote check)

The remote host is running a version of Oracle Secure Global Desktop that may have an unspecified denial of service vulnerability in the ttaauxserv binary. Note that this may be a false positive, as this plugin only checks if a vulnerable version of Oracle Secure Global Desktop is running, and do...

5CVSS5.6AI score0.01281EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/11/01 12:0 a.m.17 views

Oracle Secure Global Desktop Linux Installation Detection

Binary data oraclesecureglobaldesktopinstalled.nbin...

7.3AI score
Exploits0References1
CVE
CVE
added 2013/10/16 3:0 p.m.55 views

CVE-2013-3834

CVE-2013-3834 concerns Oracle Secure Global Desktop (Oracle Virtualization 5). The vulnerability affects the ttaauxserv binary in the Oracle Secure Global Desktop component and is described as an unspecified remote vulnerability that can affect availability via unknown vectors, enabling a remote ...

5CVSS5.8AI score0.01281EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2013/10/16 3:0 p.m.25 views

CVE-2013-3834

Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5 allows remote attackers to affect availability via unknown vectors related to ttaauxserv...

5.7AI score0.01281EPSS
Exploits0References1
Dsquare
Dsquare
added 2012/04/27 12:0 a.m.51 views

Oracle Secure Backup 10.3.0.1 RCE

Remote command execution vulnerability in Oracle Secure Backup Administration Server propertybox.php Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

10CVSS1.5AI score0.72638EPSS
Exploits13References4
Tenable Nessus
Tenable Nessus
added 2011/11/16 12:0 a.m.58 views

Oracle Database Multiple Vulnerabilities (April 2008 CPU)

The remote Oracle database server is missing the April 2008 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Advanced Queuing - Audit - Authentication - Change Data Capture - Core RDBMS - Data Pump - Export - Oracle Enterprise...

10CVSS5.4AI score0.03EPSS
Exploits0References11
Packet Storm
Packet Storm
added 2011/08/21 12:0 a.m.48 views

Oracle Secure Backup Authentication Bypass/Command Injection Vulnerability

$Id: osbunamejlist.rb 13591 2011-08-19 18:35:29Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

5CVSS0.5AI score0.50625EPSS
Exploits6
Metasploit
Metasploit
added 2011/08/19 6:35 p.m.54 views

Oracle Secure Backup Authentication Bypass/Command Injection Vulnerability

This module exploits an authentication bypass vulnerability in login.php. In conjunction with the authentication bypass issue, the 'jlist' parameter in propertybox.php can be used to execute arbitrary system commands. This module was tested against Oracle Secure Backup version 10.3.0.1.0 This...

5CVSS1AI score0.50625EPSS
Exploits6
0day.today
0day.today
added 2011/08/19 12:0 a.m.46 views

Oracle Secure Backup Authentication Bypass/Command Injection

Exploit for php platform in category web applications $Id: osbunamejlist.rb 13591 2011-08-19 18:35:29Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensin...

7.1AI score0.50625EPSS
Exploits6
Exploit DB
Exploit DB
added 2011/08/19 12:0 a.m.33 views

Oracle Secure Backup - Authentication Bypass/Command Injection (Metasploit)

$Id: osbunamejlist.rb 13591 2011-08-19 18:35:29Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

5CVSS7AI score0.50625EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2011/07/25 12:0 a.m.28 views

Oracle Secure Backup Administration Server login.php uname Parameter Arbitrary Command Injection

The version of Oracle Secure Backup Administration Server running on the remote host fails to adequately sanitize user-supplied input to the 'uname' parameter of 'login.php'. The system performs some sanitization which limits exploitation of this issue, but code execution is still possible. A...

10CVSS5.6AI score0.03244EPSS
Exploits0References5
Zero Day Initiative
Zero Day Initiative
added 2011/07/21 12:0 a.m.23 views

Oracle Secure Backup validate_login Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Secure Backup. Authentication is not required to exploit this vulnerability. The specific flaw exists within the validatelogin function defined within /apache/htdocts/php/common.php. The...

7.5CVSS3.2AI score0.03244EPSS
Exploits0References1
NVD
NVD
added 2011/07/20 11:55 p.m.22 views

CVE-2011-2252

Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.3.0.3 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2011-2261...

6.8CVSS5.9AI score0.01938EPSS
Exploits0References2
Cvelist
Cvelist
added 2011/07/20 11:0 p.m.22 views

CVE-2011-2251

Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.3.0.3 allows remote attackers to affect integrity via unknown vectors...

5.9AI score0.01554EPSS
Exploits0References2
CVE
CVE
added 2011/07/20 11:0 p.m.50 views

CVE-2011-2251

CVE-2011-2251 is linked to Oracle Secure Backup Administration Server login.php XSS in the mode parameter. The Nessus plugin notes input is not properly sanitized, enabling a remote attacker to lure a user to a crafted URL and potentially execute arbitrary script code. This is the concrete detail...

4.3CVSS6AI score0.01554EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2011/01/19 4:0 p.m.17 views

CVE-2010-3596

Unspecified vulnerability in the modssl component in Oracle Secure Backup 10.3.0.2 allows remote attackers to affect integrity and availability via unknown vectors...

6.4CVSS6AI score0.01486EPSS
Exploits0References5
Rows per page
Query Builder