Lucene search
K

255 matches found

CNVD
CNVD
added 2017/10/17 12:0 a.m.7 views

EMC NetWorker Buffer Overflow Vulnerability (CNVD-2017-32224)

EMC NetWorker is a suite of unified backup and recovery software from EMC. The software provides backup and recovery, deduplication elimination, backup reporting, and more. A buffer overflow vulnerability exists in the Server service nsrd in EMC NetWorker. A remote attacker could exploit this...

8.1CVSS8.6AI score0.03219EPSS
Exploits1References1
Veeam
Veeam
added 2017/10/12 12:0 a.m.14 views

Long Infrastructure Object Removal

Challenge Sometimes when you remove an infrastructure object vCenter or Hyper-V server from the Veeam ONE Monitor client, the removal process may take longer than expected. Cause Once you click the Remove server button from the infrastructure tree view, it could take some time to remove the data...

7.5AI score
Exploits0
VulnCheck KEV
VulnCheck KEV
added 2017/06/20 12:0 a.m.6 views

VulnCheck KEV: CVE-2006-3439

Buffer overflow in the Server Service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers, including anonymous users, to execute arbitrary code via a crafted RPC message, a different vulnerability than CVE-2006-1314...

10CVSS6.2AI score0.85461EPSS
Exploits16References1
BDU FSTEC
BDU FSTEC
added 2017/04/06 12:0 a.m.8 views

The vulnerability of the Windows operating system, which allows a perpetrator to gain access to local files

The vulnerability of the Windows operating system’s server service is related to pointer assignment errors. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to local files using specially crafted SMBv2 or SMBv3 packets...

7.1CVSS6.7AI score0.2373EPSS
Exploits1References3
Microsoft KB
Microsoft KB
added 2017/03/30 12:0 a.m.43 views

MS06-040: Vulnerability in Server service could allow remote code execution

MS06-040: Vulnerability in Server service could allow remote code execution INTRODUCTION Microsoft has released security bulletin MS06-040. The security bulletin contains all the relevant information about the security update. This information includes file manifest information and deployment...

7AI score
Exploits0
NVD
NVD
added 2017/03/17 12:59 a.m.15 views

CVE-2017-0016

Microsoft Windows 10 Gold, 1511, and 1607; Windows 8.1; Windows RT 8.1; Windows Server 2012 R2, and Windows Server 2016 do not properly handle certain requests in SMBv2 and SMBv3 packets, which allows remote attackers to execute arbitrary code via a crafted SMBv2 or SMBv3 packet to the Server...

7.1CVSS6.6AI score0.2373EPSS
Exploits1References4
Cent OS
Cent OS
added 2017/03/03 1:26 p.m.76 views

ipa, python2 security update

CentOS Errata and Security Advisory CESA-2017:0388 An update for ipa is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

8.1CVSS6.7AI score0.01283EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2017/03/02 5:6 p.m.61 views

Moderate: Red Hat Security Advisory: ipa security and bug fix update

An update for ipa is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

8.1CVSS6.7AI score0.01283EPSS
Exploits0References6
Packet Storm
Packet Storm
added 2015/12/07 12:0 a.m.44 views

iniNet SpiderControl SCADA Web Server Service 2.02 Privilege Escalation

iniNet SpiderControl SCADA Web Server Service 2.02 Insecure File Permissions Vendor: iniNet Solutions GmbH Product web page: http://www.spidercontrol.net Affected version: 2.02.0000 Summary: Modular and automated engineering is provided for HMI and SCADA. The tools are developed to join a large...

0.8AI score
Exploits0
NVD
NVD
added 2015/11/21 11:59 a.m.23 views

CVE-2015-7912

The Ice Faces servlet in agserverservice.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows remote attackers to upload and execute arbitrary Java code via a crafted XML document...

10CVSS7.4AI score0.03203EPSS
Exploits0References2
Prion
Prion
added 2015/11/21 11:59 a.m.16 views

Code injection

The Ice Faces servlet in agserverservice.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows remote attackers to upload and execute arbitrary Java code via a crafted XML document...

10CVSS7.9AI score0.03203EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2015/11/21 11:59 a.m.20 views

Design/Logic Flaw

agserverservice.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows local users to execute arbitrary Java code with SYSTEM privileges by using the Apache Axis AdminService deployment method to publish a class...

7.2CVSS7.6AI score0.00402EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/11/21 11:0 a.m.42 views

CVE-2015-7912

The Ice Faces servlet in agserverservice.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows remote attackers to upload and execute arbitrary Java code via a crafted XML document...

7.3AI score0.03203EPSS
Exploits0References2
CVE
CVE
added 2015/11/21 11:0 a.m.59 views

CVE-2015-7913

CVE-2015-7913 affects Tibbo AggreGate Platform (ag_server_service.exe) prior to version 5.30.06. A local attacker can publish arbitrary Java classes via the Apache Axis AdminService deployment method, enabling code execution with SYSTEM privileges. Mitigation: update to AggreGate Platform 5.30.06...

7.2CVSS7.3AI score0.00402EPSS
Exploits0References2Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2015/11/20 12:0 a.m.42 views

Tibbo AggreGate SCADA/HMI Server Service uploadDirectory Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Tibbo AggreGate SCADA/HMI. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Windows service "AggreGate Server Service" agserverservice.exe. Through...

9.3CVSS7.3AI score0.03203EPSS
Exploits0References1
Cvelist
Cvelist
added 2015/07/14 9:0 p.m.24 views

CVE-2015-2373

The Remote Desktop Protocol RDP server service in Microsoft Windows 7 SP1, Windows 8, and Windows Server 2012 allows remote attackers to execute arbitrary code via a series of crafted packets, aka "Remote Desktop Protocol RDP Remote Code Execution Vulnerability."...

7.9AI score0.3897EPSS
Exploits1References2
Microsoft KB
Microsoft KB
added 2015/07/14 12:0 a.m.36 views

MS15-067: Vulnerability in RDP could allow remote code execution: July 14, 2015

Resolves a vulnerability in Windows that could allow remote code execution if an attacker sends a specially crafted sequence of packets to a targeted system that has the Remote Desktop Protocol RDP server service enabled. By default, the RDP server service is not enabled on any Windows operating...

10CVSS6.7AI score0.3897EPSS
Exploits1
OpenVAS
OpenVAS
added 2014/08/08 12:0 a.m.22 views

CentOS Update for 389-ds-base CESA-2014:1031 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS5.2AI score0.02198EPSS
Exploits0References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.35 views

Microsoft Server Service NetpwPathCanonicalize Overflow

No description provided by source. $Id: ms06040netapi.rb 11762 2011-02-17 03:56:15Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

6.7AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.48 views

Microsoft Server Service Relative Path Stack Corruption

No description provided by source. $Id: ms08067netapi.rb 11614 2011-01-21 04:09:48Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

7.1AI score
Exploits0
Rows per page
Query Builder