4193 matches found
Oracle Business Transaction Management FlashTunnelService Remote Code Execution
This module exploits abuses the FlashTunnelService SOAP web service on Oracle Business Transaction Management 12.1.0.7 to upload arbitrary files, without authentication, using the WriteToFile method. The same method contains a directory traversal vulnerability, which allows to upload the files to...
Mandrake Linux Security Advisory : bind (MDKSA-2001:017)
Four problems exists in all versions of ISC BIND 4.9.x prior to 4.9.8 and 8.2.x prior to 8.2.3 9.x is not affected. Version 8.2.x contains a buffer overflow in transaction signature TSIG handling code that can be exploited by an attacker to gain unauthorized privileged access to the system,...
Oracle Business Transaction Management FlashTunnelService WriteToFile Vulnerability
Added: 08/17/2012 BID: 54839 Background Oracle Business Transaction Management BTM is a component of several Oracle Enterprise Manager Management Packs, including WebLogic Server Management Pack Enterprise Edition. Oracle BTM provides capability in three key areas: transaction visibility,...
Oracle Business Transaction Management FlashTunnelService WriteToFile Vulnerability
Added: 08/17/2012 BID: 54839 Background Oracle Business Transaction Management BTM is a component of several Oracle Enterprise Manager Management Packs, including WebLogic Server Management Pack Enterprise Edition. Oracle BTM provides capability in three key areas: transaction visibility,...
Oracle Business Transaction Management FlashTunnelService WriteToFile Vulnerability
Added: 08/17/2012 BID: 54839 Background Oracle Business Transaction Management BTM is a component of several Oracle Enterprise Manager Management Packs, including WebLogic Server Management Pack Enterprise Edition. Oracle BTM provides capability in three key areas: transaction visibility,...
Oracle Business Transaction Management FlashTunnelService WriteToFile Vulnerability
Added: 08/17/2012 BID: 54839 Background Oracle Business Transaction Management BTM is a component of several Oracle Enterprise Manager Management Packs, including WebLogic Server Management Pack Enterprise Edition. Oracle BTM provides capability in three key areas: transaction visibility,...
Oracle Business Transaction Management Server FlashTunnelService Remote File Deletion
Oracle Business Transaction Management Server 12.1.0.2.7 FlashTunnelService Remote File Deletion tested against: Microsoft Windows Server 2003 r2 sp2 Oracle WebLogic Server 12c 12.1.1 Oracle Business Transaction Management Server 12.1.0.2.7 Production version files tested:...
Oracle Business Transaction Management Server directory traversal
FlashTunnelService allows arbitrary files deletion via SOAP interface...
Oracle Business Transaction Management Server 12.1.0.2.7 FlashTunnelService - Remote File Deletion
Oracle Business Transaction Management Server 12.1.0.2.7 FlashTunnelService Remote File Deletion tested against: Microsoft Windows Server 2003 r2 sp2 Oracle WebLogic Server 12c 12.1.1 Oracle Business Transaction Management Server 12.1.0.2.7 Production version files tested:...
CVE-2012-1909
The Bitcoin protocol, as used in bitcoind before 0.4.4, wxBitcoin, Bitcoin-Qt, and other programs, does not properly handle multiple transactions with the same identifier, which allows remote attackers to cause a denial of service unspendable transaction by leveraging the ability to create a...
CVE-2010-5139
Integer overflow in wxBitcoin and bitcoind before 0.3.11 allows remote attackers to bypass intended economic restrictions and create many bitcoins via a crafted Bitcoin transaction...
CVE-2010-5140
wxBitcoin and bitcoind before 0.3.13 do not properly handle bitcoins associated with Bitcoin transactions that have zero confirmations, which allows remote attackers to cause a denial of service invalid-transaction flood by sending low-valued transactions without transaction fees...
CVE-2010-5138
wxBitcoin and bitcoind 0.3.x allow remote attackers to cause a denial of service electricity consumption via a Bitcoin transaction containing multiple OPCHECKSIG script opcodes...
CVE-2010-5137
wxBitcoin and bitcoind before 0.3.5 allow remote attackers to cause a denial of service daemon crash via a Bitcoin transaction containing an OPLSHIFT script opcode...
Design/Logic Flaw
wxBitcoin and bitcoind 0.3.x allow remote attackers to cause a denial of service electricity consumption via a Bitcoin transaction containing multiple OPCHECKSIG script opcodes...
CVE-2010-5139
Integer overflow in wxBitcoin and bitcoind before 0.3.11 allows remote attackers to bypass intended economic restrictions and create many bitcoins via a crafted Bitcoin transaction...
Integer overflow
Integer overflow in wxBitcoin and bitcoind before 0.3.11 allows remote attackers to bypass intended economic restrictions and create many bitcoins via a crafted Bitcoin transaction...
Code injection
wxBitcoin and bitcoind before 0.3.5 allow remote attackers to cause a denial of service daemon crash via a Bitcoin transaction containing an OPLSHIFT script opcode...
CVE-2010-5137
wxBitcoin and bitcoind before 0.3.5 allow remote attackers to cause a denial of service daemon crash via a Bitcoin transaction containing an OPLSHIFT script opcode...
CVE-2010-5138
wxBitcoin and bitcoind 0.3.x allow remote attackers to cause a denial of service electricity consumption via a Bitcoin transaction containing multiple OPCHECKSIG script opcodes...