43 matches found
CVE-2021-23176
Improper access control in reporting engine of l10nfrfec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets...
CVE-2021-23176
CVE-2021-23176 affects Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier. The vulnerability is due to improper access control in the l10n_fr_fec reporting engine, allowing remote authenticated users to extract accounting information via crafted RPC packets. Affected products an...
CVE-2021-23176
Improper access control in reporting engine of l10nfrfec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets...
CVE-2021-23176
Improper access control in reporting engine of l10nfrfec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets...
CVE-2021-23176
Improper access control in reporting engine of l10nfrfec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets...
Odoo 安全漏洞
Odoo is an Enterprise Resource Planning ERP and Customer Relationship Management CRM system from Odoo Belgium. The system is developed in Python, with PostgreSQL as the database, and includes modules for sales management, inventory management, and financial management. A security vulnerability...
SUSE CVE-2003-0033
Buffer overflow in the RPC preprocessor for Snort 1.8 and 1.9.x before 1.9.1 allows remote attackers to execute arbitrary code via fragmented RPC packets...
Microsoft Windows Network File System Denial of Service (CVE-2020-17047)
A denial of service vulnerability has been reported in Windows Network File System. The vulnerability is due to improper handling of crafted RPC packets. A remote attacker can exploit this vulnerability by sending malicious RPC calls to a targe server...
Debian Security Advisory DSA 2812-1 (samba - several vulnerabilities)
Two security issues were found in Samba, a SMB/CIFS file, print, and login server: CVE-2013-4408 It was discovered that multiple buffer overflows in the processing of DCE-RPC packets may lead to the execution of arbitrary code. CVE-2013-4475 Hemanth Thummala discovered that ACLs were not checked...
DSA-2812-1 samba - several
Bulletin has no description...
PT-2010-3251 · Cisco · Cisco Asa +1
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions 7.2 through 7.24 Cisco Adaptive Security Appliances ASA 5500 series devices versions 8.0 through 8.05.18 Cisco Adaptive Security Appliances ASA 5500 series devices versions 8...
Microsoft Windows License Logging Server Remote Code Execution Vulnerability (974783)
This host is missing a critical security update according to Microsoft Bulletin MS09-064. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2007-1785
The RPC service in mediasvr.exe in CA BrightStor ARCserve Backup 11.5 SP2 build 4237 allows remote attackers to execute arbitrary code via crafted xdrhandlet data in RPC packets, which is used in calculating an address for a function call, as demonstrated using the 191 0xbf RPC request...
CVE-2005-3658
Multiple heap-based buffer overflows in EMC Legato NetWorker 7.1.x before 7.1.4 and 7.2.x before 7.2.1.Build.314, and other products such as Sun Solstice Backup SBU 6.0 and 6.1 and StorEdge Enterprise Backup Software EBS 7.1 through 7.2L, allow remote attackers to execute arbitrary code or cause ...
CVE-2005-3658
Multiple heap-based buffer overflows in EMC Legato NetWorker 7.1.x before 7.1.4 and 7.2.x before 7.2.1.Build.314, and other products such as Sun Solstice Backup SBU 6.0 and 6.1 and StorEdge Enterprise Backup Software EBS 7.1 through 7.2L, allow remote attackers to execute arbitrary code or cause ...
CVE-2001-1279
Buffer overflow in print-rx.c of tcpdump 3.x probably 3.6x allows remote attackers to cause a denial of service and possibly execute arbitrary code via AFS RPC packets with invalid lengths that trigger an integer signedness error, a different vulnerability than CVE-2000-1026...
CVE-2001-1279
CVE-2001-1279 affects tcpdump 3.x (likely 3.6x) with a buffer overflow in the AFS RPC decoding path (print-rx.c). Exploitation via crafted AFS RPC packets with invalid lengths can cause a denial of service and may allow remote code execution with the privileges of tcpdump (typically root). The is...
CVE-2003-0033
Removed by vendor...
CVE-2003-0722
The default installation of sadmind on Solaris uses weak authentication AUTHSYS, which allows local and remote attackers to spoof Solstice AdminSuite clients and gain root privileges via a certain sequence of RPC packets...
CVE-2003-0722
CVE-2003-0722 affects the Solaris sadmind RPC service, which ships by default with AUTH_SYS. The weakness allows remote/local attackers to spoof Solstice AdminSuite clients and gain root privileges via a sequence of RPC packets. Public details in connected sources show an in-the-wild/poised Metas...