EUVD-2018-8603

Malware in sbrugna...

CIMTechniques CIMScan SQL Code Execution Vulnerability

CIMTechniques CIMScan is a critical infrastructure monitoring system from CIMTechniques, Inc. The system can be used to detect temperature, humidity and other variables in infrastructure environments.SOAP WSDL parser is one of the SOAP WSDL Web Services Description Language parsers. CIMTechniques...

CVE-2018-16803

In CIMTechniques CIMScan 6.x through 6.2, the SOAP WSDL parser allows attackers to execute SQL code...

Code injection

In CIMTechniques CIMScan 6.x through 6.2, the SOAP WSDL parser allows attackers to execute SQL code...

U.S. Dept Of Defense: SOAP WSDL Parser SQL Code Execution

Summary: SOAP WSDL Parser SQL Code Execution Description: It was possible to parse WSDL resources and read all functions from the SOAP Admin Panel, therefor i was able to repeat the sql query with a tampered request with my own custom SQL command. i was able to extract all the database names for...

The vulnerability of the SOAP WSDL Parser module of the Microsoft .NET Framework allows a perpetrator to execute arbitrary code.

A vulnerability exists in the IsValidUrl method of the SOAP WSDL parser module of the Microsoft .NET Framework. This vulnerability arises due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to execute arbitrary code using a...

PT-2017-2916

Name of the Vulnerable Software and Affected Versions Microsoft .NET Framework versions 2.0 through 4.7 Description A remote code execution issue exists due to insufficient input validation in the IsValidUrl method of the SOAP WSDL Parser module. This allows an attacker to execute arbitrary code...