Citrix Workspace app fails with "cannot connect to the server" when connected externally

This article is intended for Citrix administrators and technical teams only. Non-admin users must contact their company’s Help Desk/IT support team and can refer to CTX297149 for more information. Receiver for MAC and Windows failing to add store...

IBM WebSphere MQ Channel Name Bruteforce

This module uses a dictionary to bruteforce MQ channel names. For all identified channels it also returns if SSL is used and whether it is a server-connection channel. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...

Sentrifugo Detection

Detection of Sentrifugo. The script sends a connection request to the server and attempts to detect Sentrifugo and to extract its version. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

Swarmpit UI Detection

Detection of Swarmpit Web UI. The script sends a connection request to the server and attempts to detect Swarmpit UI and to extract its version if possible. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Security Bulletin: Security vulnerabilities have been identified in data server connection and product integration shipped with InfoSphere Optim Query Workload Tuner [for LUW, z/OS] (CVE-2016-5546 CVE-2016-5548 CVE-2016-5549 CVE-2016-5547 CVE-2016-2183)

Summary Data server connection and product integration are shipped as a component of InfoSphere Optim Query Workload Tuner for LUW, z/OS. Information about security vulnerabilities affecting data server connection and product integration have been published in a security bulletin. Vulnerability...

App Layering: How to force the ELM to use a specific SMB version for file servers

In the ELM, when connecting to a file share, we test all the SMB versions that we support, from top to bottom, until we get a successful login. We specifically try 3.02, 3.0, 2.1, 2.0 and 1.0, in that order, before giving up. An SMB server is supposed to return "Not Supported" when an attempt is...

Design/Logic Flaw

The Java implementations of AMF3 deserializers in Pivotal/Spring Spring-flex derive class instances from java.io.Externalizable rather than the AMF3 specification's recommendation of flash.utils.IExternalizable. A remote attacker with the ability to spoof or control an RMI server connection may b...

Design/Logic Flaw

The Java implementation of AMF3 deserializers used in Flamingo amf-serializer by Exadel, version 2.2.0 derives class instances from java.io.Externalizable rather than the AMF3 specification's recommendation of flash.utils.IExternalizable. A remote attacker with the ability to spoof or control an...

phpIP Management Detection

Detection of phpIP Management. The script sends a connection request to the server and attempts to detect phpIP Management. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

CVE-2018-5306

Multiple cross-site scripting XSS vulnerabilities in Sonatype Nexus Repository Manager aka NXRM 3.x before 3.8 allow remote attackers to inject arbitrary web script or HTML via 1 the repoId or 2 format parameter to service/siesta/healthcheck/healthCheckFileDetail/.../index.html; 3 the filename in...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Sonatype Nexus Repository Manager aka NXRM 2.x before 2.14.6 allow remote attackers to inject arbitrary web script or HTML via 1 the repoId or 2 format parameter to service/siesta/healthcheck/healthCheckFileDetail/.../index.html; 3 the filename...

CVE-2018-5307

Multiple cross-site scripting XSS vulnerabilities in Sonatype Nexus Repository Manager aka NXRM 2.x before 2.14.6 allow remote attackers to inject arbitrary web script or HTML via 1 the repoId or 2 format parameter to service/siesta/healthcheck/healthCheckFileDetail/.../index.html; 3 the filename...

CVE-2018-5307

Summary: CVE-2018-5307 covers multiple cross-site scripting (XSS) vulnerabilities in Sonatype Nexus Repository Manager (NXRM) 2.x prior to 2.14.6, with exploitation possible via several parameters/files (repoId, format parameter to healthCheckFileDetail, staging upload filename, username on user ...

Kaspersky Secure Mail Gateway Detection

Detection of Kaspersky Secure Mail Gateway. The script sends a connection request to the server and attempts to detect Kaspersky Secure Mail Gateway and to extract its version. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...

CVE-2017-12697

A Man-in-the-Middle issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to intercept sensitive information when the client connects to the server...

System Compromise

npm-script-demo compromises the system. It is possible because the module can create an unauthorized connection to a command and control server when it is installed...

ShadowSocks ConnecTion - A Wrapper Tool For Shadowsocks To Consistently Bypass Firewalls

A wrapper tool for shadowsocks to consistently bypass firewalls. Quick start Automatically connect The easiest way to run this tool is just type ssct in terminal, and ssct will acquire available shadowsocks servers from ishadowsocks and connect to it automatically. Connect to a specific server...

Unable to Connect to PVS After PVS Server Upgrade or Downgrade

After an upgrade of PVS from 7.13 to 7.15, or a downgrade of the PVS server from 7.13 to 7.6, the ELM was no longer able to connect to it. Testing credentials would fail. Note, this probably happens in lots of other circumstances, but these are the two circumstances where we've seen this. If you...

Saia Burgess Controls (SBC) PCD Detection

Detection of Saia Burgess Controls SBC PCD devices. The script sends a connection request to the server and attempts to detect SBC PCD devices and to extract its version. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyrig...

Viap Automation WinPLC7 5.0.45.5921 - Recv Buffer Overflow (Metasploit)

Viap Automation WinPLC7 5.0.45.5921 - Recv Buffer Overflow Metasploit require 'msf/core' class MetasploitModule 'VIPA Authomation WinPLC7 recv Stack Buffer Overflow', 'Description' = %q This module exploits a stack based buffer overflow found in VIPA Automation WinPLC7 'james fitts' , 'License' =...