PT-2021-2296 · Microsoft · Visual Studio Code Remote Development Extension

Name of the Vulnerable Software and Affected Versions: Visual Studio Code Remote Development Extension affected versions not specified Description: The issue is related to incorrect code generation management in the Remote Development Extension for Visual Studio Code. Exploitation of this issue m...

CVE-2020-17148

Visual Studio Code Remote Development Extension Remote Code Execution Vulnerability...

CVE-2020-17148

Visual Studio Code Remote Development Extension Remote Code Execution Vulnerability...

CVE-2020-17148 Visual Studio Code Remote Development Extension Remote Code Execution Vulnerability

...

CVE-2020-17148

CVE-2020-17148 affects the Visual Studio Code Remote Development Extension (SSH-based remote access). The root cause is a defect in the SSH editor’s source code handling that enables remote code execution. The vulnerability enables an attacker to execute arbitrary code on the vulnerable host with...

Visual Studio Code Remote Development Extension Remote Code Execution Vulnerability

...

KLA12020 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Azure DevOps Server can be...

PT-2020-5225 · Microsoft · Visual Studio Code Remote Development Extension

Name of the Vulnerable Software and Affected Versions: Visual Studio Code Remote Development Extension affected versions not specified Description: The issue is related to the Visual Studio Code Remote Development Extension and involves a problem with the SSH editor's source code, specifically wi...

Macromedia ColdFusion MX 6.0 - Remote Development Service File Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8109/info A vulnerability has been reported for the RDS service that may allow an attacker to obtain unauthorized access to a data residing on a ColdFusion MX server. The vulnerability is due to the way that authenticatio...

Adobe ColdFusion Authentication Bypass (CVE-2013-0632)

An authentication bypass vulnerability has been reported in ColdFusion servers. A remote attacker could trigger this through Remote Development Services RDS or Administrator interfaces if they do not require authentication or through CSRF if APSB12-26 has not been applied...

CVE-2011-4368

Cross-site scripting XSS vulnerability in Remote Development Services RDS in Adobe ColdFusion 8.0 through 9.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in Remote Development Services RDS in Adobe ColdFusion 8.0 through 9.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2011-4368

CVE-2011-4368 concerns an XSS flaw in Adobe ColdFusion’s Remote Development Services (RDS) affecting ColdFusion 8.0–9.0.1. The vulnerability enables remote attackers to inject arbitrary script/HTML in victims’ browsers, via unspecified vectors, within the context of the affected web application. ...

CVE-2011-4368

Cross-site scripting XSS vulnerability in Remote Development Services RDS in Adobe ColdFusion 8.0 through 9.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Adobe ColdFusion Remote Development Services Enabled Without Authentication

ColdFusion's Remote Development Services allow developers to use IDEs such as Dreamweaver to manage applications. The remote host has RDS enabled without authentication. This means that a remote attacker can read and write files on the affected system. %NASLMINLEVEL 70300 C Tenable Network...

Adobe ColdFusion Remote Development Services

Remote Development Services RDS is enabled on the remote ColdFusion server. RDS allows developers to use IDEs such as Dreamweaver to manage applications. It is recommended that RDS be disabled for production servers and that it be configured to require authentication on development servers. C...

ColdFusion MX Remote Development Service Exploit

No description provided by source. !/usr/bin/perl RDScDump.pl By angry packet THIS IS AN UNPATCHED VULNERABILITY - THIS IS AN UNPATCHED VULNERABILITY ColdFusion 6 MX Server does several things in order to get remote dir structure so we will need to recreate these functions. This is a "almost"...

0006_AP.CF-rds-dump.txt

-- ------------------------- -- - AngryPacket Security Advisory - -- ------------------------- -- - +--------------------- -- - + advisory information +------------------ -- - Exploit Code: Victim1 Initial Bug Report By: rs2112 release date: 06/26/2003 +------------------- -- - + timeline of...

Macromedia ColdFusion MX 6.0 - Remote Development Service File Disclosure

Macromedia ColdFusion MX 6.0 - Remote Development Service File Disclosure source: https://www.securityfocus.com/bid/8109/info A vulnerability has been reported for the RDS service that may allow an attacker to obtain unauthorized access to a data residing on a ColdFusion MX server. The...

Macromedia ColdFusion MX 6.0 - Remote Development Service File Disclosure

source: https://www.securityfocus.com/bid/8109/info A vulnerability has been reported for the RDS service that may allow an attacker to obtain unauthorized access to a data residing on a ColdFusion MX server. The vulnerability is due to the way that authentication is done when communicating with ...