Apache 2.2.14 mod_isapi Dangling Pointer Remote SYSTEM Exploit

Exploit for unknown platform in category remote exploits ============================================================== Apache 2.2.14 modisapi Dangling Pointer Remote SYSTEM Exploit ============================================================== / Apache 2.2.14 modisapi Dangling Pointer Remote...

Novell iPrint Client Multiple BOF Vulnerabilities (Windows)

This host is running Novell iPrint Client and is prone to multiple Buffer Overflow vulnerabilities. OpenVAS Vulnerability Test $Id: secpodnovelliprintclientmultbofvulnwin.nasl 8201 2017-12-20 14:28:50Z cfischer $ Novell iPrint Client Multiple BOF Vulnerabilities Windows Authors: Sujit Ghosal...

Novell iPrint Client Multiple BOF Vulnerabilities (Linux)

This host is installed with Novell iPrint Client and is prone to multiple Buffer Overflow vulnerabilities. OpenVAS Vulnerability Test $Id: secpodnovelliprintclientmultbofvulnlin.nasl 5122 2017-01-27 12:16:00Z teissa $ Novell iPrint Client Multiple BOF Vulnerabilities Linux Authors: Sujit Ghosal...

Sitecore Staging Module 5.4.0 - Authentication Bypass File Manipulation

Sitecore Staging Module 5.4.0 - Authentication Bypass File Manipulation SEC Consult Security Advisory ========================================================================== title: Authentication bypass and file manipulation in Sitecore Staging Module products: Sitecore Staging Module vulnerab...

Adobe Flash Player JPEG Parsing Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious web page or open a malicious SWF file. The specific flaw exists in the parsi...

Microsoft Internet Explorer XHTML DOM Manipulation Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required in that a user must visit a malicious web page. The specific flaw exists in the manipulation and parsing of certain HTML tags. The ordering...

Microsoft Office Excel Multiple Vulnerabilities (972652)

This host is missing a critical security update according to Microsoft Bulletin MS09-067. OpenVAS Vulnerability Test $Id: secpodms09-067.nasl 6533 2017-07-05 08:41:34Z santu $ Microsoft Office Excel Multiple Vulnerabilities 972652 Authors: Sharath S Copyright: Copyright c 2009 SecPod,...

Exim SPA Authentication Buffer Overflow (CVE-2005-0022)

The Exim mail server is a full featured mail transfer agent MTA. It offers the user several optional authentication mechanisms, one of which is Secure Password Authentication SPA. Secure Password Authentication is also known as NTML authentication, which is commonly used by Windows-based software...

Microsoft Internet Explorer writing-mode Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required in that a user must visit a malicious web page. The specific flaw exists in the parsing of CSS style information. When a writing-mode style...

VMnc Media Codec Multiple Heap Overflows (VMSA-2009-0012)

VMnc media codec is installed on the remote host. The codec is typically installed along with VMware Workstation, VMware Player, VMware ACE or in its standalone configuration by installing VMware Workstation Movie Decoder and is required to play movies recorded with VMware applications. The...

Subversion Client/Server Detection (Windows)

Subversion, an open source version control system, is installed on the remote system. Subversion can be installed on Windows using CollabNet-certified binaries or through third-party packages such as VisualSVN, TortoiseSVN, and SlikSVN. Third-party packages typically include CollabNet binaries in...

EMC Replication Manager Client Control Service Remove Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the EMC Replication Manager Client. Authentication is not required to exploit this vulnerability. The specific flaw exists within the irccd.exe process which listens by default on a TCP port around...

NcFTPD 2.8.5 Jail Breakout

NcFTPd googlemail.com / http://isowarez.de Date: 27th July 2009 Greetings: Alex,Andi,Adize,wY!,Netspy,Revoguard Prerequisites: Valid user account. Demonstration on FreeBSD 7.0-RELEASE and NcFTPd 2.8.5 latest version: ftp 192.168.2.5 Connected to 192.168.2.5. 220 localhost NcFTPd Server unregister...

Default Password (admin) for 'root' Account

The account 'root' on the remote host has the password 'admin'. An attacker may leverage this issue to gain access, likely as an administrator, to the affected system. Note that DD-WRT, an open source Linux-based firmware popular on small routers and embedded systems, is known to use these...

AN Guestbook Local File Inclusion Vulnerability

This host is running AN Guestbook and is prone to Local File Inclusion vulnerability. OpenVAS Vulnerability Test $Id: gbanguestbooklfivuln.nasl 4865 2016-12-28 16:16:43Z teissa $ AN Guestbook Local File Inclusion Vulnerability Authors: Nikita MR Copyright: Copyright c 2009 Greenbone Networks GmbH...

TorrentTrader Classic Multiple Vulnerabilities

TorrentTrader Classic is prone to multiple vulnerabilities. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

Green Dam - Remote Change System Time

// Green Dam listen on udp port 1234 and wait for the 4 bytes time value // We can send some bytes to change the time of the dest system // testgreendamatgmail.com include include include int mainint argc, char argv try if argc != 3 std::cerr " std::endl; std::cerr "Example: testgd 192.168.0.12...

Adobe Shockwave Player Director File Parsing Pointer Overwrite Vulnerability

This vulnerability allows remote attackers to execute code on vulnerable installations of Adobe's Shockwave Player. User interaction is required in that a user must visit a malicious web site. The specific flaw exists when the Shockwave player attempts to load a specially crafted Adobe Director...

Mozilla Firefox PDF JavaScript Restriction Bypass Vulnerability (Linux)

The host is installed with Mozilla Firefox browser and is prone to PDF Javascript Restriction Bypass Vulnerability. OpenVAS Vulnerability Test $Id: secpodfirefoxpdfjsrestbypassvulnlin.nasl 5055 2017-01-20 14:08:39Z teissa $ Mozilla Firefox PDF Javascript Restriction Bypass Vulnerability Linux...

IBM DB2 Information Disclosure Vulnerability (Windows)

This host is installed with IBM DB2 and is prone to Information Disclosure Vulnerability. OpenVAS Vulnerability Test $Id: gbibmdb2infodiscvulnwin.nasl 4869 2016-12-29 11:01:45Z teissa $ IBM DB2 Information Disclosure Vulnerability Windows Authors: Sujit Ghosal Copyright: Copyright c 2009 Greenbon...