Lucene search
K

195 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:54 a.m.6 views

SUSE CVE-2011-0901

Multiple stack-based buffer overflows in the tsclaunchremote function src/support.c in Terminal Server Client tsclient 0.150, and possibly other versions, allow user-assisted remote attackers to execute arbitrary code via a .RDP file with a long 1 username, 2 password, or 3 domain argument. NOTE:...

6.8CVSS7.9AI score0.04523EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/11/28 12:0 a.m.7 views

Micro-Star International MSI Center 数据伪造问题漏洞

Micro-Star International MSI Center is a monitoring and management platform from Micro-Star International China. All your favorite features can be found on the Feature Set page, such as Gaming Mode or Smart Priority. A security vulnerability exists in Micro-Star International MSI Center version...

8.8CVSS7.8AI score0.0044EPSS
Exploits1References3
Microsoft KB
Microsoft KB
added 2022/02/15 12:0 a.m.6 views

February 15, 2022—KB5010421 (OS Build 20348.558) Preview

February 15, 2022—KB5010421 OS Build 20348.558 Preview For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to find...

7AI score
Exploits0
NVD
NVD
added 2021/03/11 4:15 p.m.22 views

CVE-2021-26887

An elevation of privilege vulnerability exists in Microsoft Windows when Folder redirection has been enabled via Group Policy. When folder redirection file server is co-located with Terminal server, an attacker who successfully exploited the vulnerability would be able to begin redirecting anothe...

7.8CVSS0.00921EPSS
Exploits0References1
OSV
OSV
added 2021/03/11 4:15 p.m.2 views

CVE-2021-26887

An elevation of privilege vulnerability exists in Microsoft Windows when Folder redirection has been enabled via Group Policy. When folder redirection file server is co-located with Terminal server, an attacker who successfully exploited the vulnerability would be able to begin redirecting anothe...

7.8CVSS7AI score0.00921EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2021/03/09 8:0 a.m.86 views

Microsoft Windows Folder Redirection Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Microsoft Windows when Folder redirection has been enabled via Group Policy. When folder redirection file server is co-located with Terminal server, an attacker who successfully exploited the vulnerability would be able to begin redirecting anothe...

7.8CVSS4.1AI score0.00921EPSS
Exploits0
Citrix
Citrix
added 2020/07/20 12:0 a.m.9 views

How to Specify a Program to Start on Connection by Using Microsoft Remote Desktop Connection

This article describes how to specify a program to start on connection by using Microsoft Remote Desktop Connection. Requirements Remote Desktop Protocol RDP client such as the Microsoft Remote Desktop Connection client MSTSC.exe. Additional configuration on the XenApp Serverto accept these...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2020/04/09 12:0 a.m.156 views

netABuse Insufficient Windows Authentication Logic Scanner

import os,re,time,signal,sys from subprocess import from multiprocessing import Process By John Page aka hyp3rlinx Apparition Security twitter.com/hyp3rlinx Advisory: http://hyp3rlinx.altervista.org/advisories/MICROSOFT-WINDOWS-NET-USE-INSUFFICIENT-PASSWORD-PROMPT.txt...

0.2AI score
Exploits0
Prion
Prion
added 2020/03/19 8:15 p.m.18 views

Remote code execution

Systech Corporation NDS-5000 Terminal Server, NDS/5008 8 Port, RJ45, firmware Version 02D.30. Successful exploitation of this vulnerability could allow information disclosure, limit system availability, and may allow remote code execution...

6CVSS8.5AI score0.01729EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2020/03/19 7:18 p.m.84 views

CVE-2020-7006

CVE-2020-7006 affects Systech NDS-5000 Terminal Server/NDS-5008 (8 Port, RJ45) firmware version 02D.30. The issue is a stored cross-site scripting (CWE-79) vulnerability in the WEB application, enabling potential client-side code execution and information disclosure with remote impact. Affected p...

8.4CVSS8.5AI score0.01729EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/03/19 7:18 p.m.21 views

CVE-2020-7006

Systech Corporation NDS-5000 Terminal Server, NDS/5008 8 Port, RJ45, firmware Version 02D.30. Successful exploitation of this vulnerability could allow information disclosure, limit system availability, and may allow remote code execution...

8.6AI score0.01729EPSS
Exploits0References1
ICS
ICS
added 2020/03/19 12:0 a.m.107 views

Systech NDS-5000 Terminal Server

1. EXECUTIVE SUMMARY CVSS v3 6.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Systech Corporation Equipment: NDS-5000 Terminal Server Vulnerability: Cross-site Scripting 2. RISK EVALUATION Successful exploitation of this vulnerability could allow information disclosure,...

8.4CVSS8.6AI score0.01729EPSS
Exploits0References5
CNVD
CNVD
added 2020/01/13 12:0 a.m.4 views

LTSP LDM Elevation of Privilege Vulnerability

LTSP is a well-known Linux Terminal Server Project program that adds thin client support to Linux servers. An elevation of privilege vulnerability exists in LTSP LDM, which can be exploited by an attacker with certain privileges to gain privileges by performing a symbolic link attack on files wit...

7.8CVSS7.5AI score0.00427EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/01/11 12:0 a.m.26 views

Debian: Security Advisory (DLA-2064-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.00427EPSS
Exploits0References3
Debian
Debian
added 2020/01/10 3:6 p.m.60 views

[SECURITY] [DLA 2064-1] ldm security update

Package : ldm Version : 2:2.2.15-2+deb8u1 CVE ID : CVE-2019-20373 Debian Bug : 948538 It was discovered that a hook script of ldm, the display manager for the Linux Terminal Server Project incorrectly parsed responses from an SSH server which could result in local root privilege escalation. For...

7.8CVSS7.4AI score0.00427EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/01/10 12:0 a.m.38 views

Debian DSA-4601-1 : ldm - security update

It was discovered that a hook script of ldm, the display manager for the Linux Terminal Server Project, incorrectly parsed responses from an SSH server, which could result in local root privilege escalation. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

7.8CVSS7.3AI score0.00427EPSS
Exploits0References5
OSV
OSV
added 2020/01/09 11:15 p.m.2 views

UBUNTU-CVE-2019-20373

LTSP LDM through 2.18.06 allows fat-client root access because the LDMUSERNAME variable may have an empty value if the user's shell lacks support for Bourne shell syntax. This is related to a run-x-session script...

7.8CVSS7.1AI score0.00427EPSS
Exploits0References5
Fedora
Fedora
added 2019/09/06 12:35 p.m.17 views

[SECURITY] Fedora 30 Update: rdesktop-1.8.6-1.fc30

rdesktop is an open source client for Windows NT Terminal Server and Windows 2000 & 2003 Terminal Services, capable of natively speaking Remote Desktop Protocol RDP in order to present the user's NT desktop. Unlike Citrix ICA, no server extensions are required...

2.3AI score
Exploits0
Microsoft KB
Microsoft KB
added 2019/09/03 12:0 a.m.5 views

June 27, 2019—KB4501375 (OS Build 18362.207)

June 27, 2019—KB4501375 OS Build 18362.207 Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard. Improvements and fixes This update includes quality improvements. Key changes include: Addresses an issue with Hyper-V virtualization on a specific...

6.8AI score
Exploits0
ThreatPost
ThreatPost
added 2019/07/10 9:15 p.m.124 views

Bug in Anesthesia Respirators Allows Cyber-Tampering

A vulnerability in GE Healthcare’s Aestiva and Aespire anesthesia devices would allow an unauthenticated cybercriminal on the same network as the device to modify gas composition parameters within the devices’ respirator function, thus changing sensor readings for gas density. According to GE...

5CVSS0.8AI score0.01336EPSS
Exploits0References6
Rows per page
Query Builder