104 matches found
UBUNTU-CVE-2022-48674
In the Linux kernel, the following vulnerability has been resolved: erofs: fix pcluster use-after-free on UP platforms During stress testing with CONFIGSMP disabled, KASAN reports as below: ================================================================== BUG: KASAN: use-after-free in...
SUSE CVE-2011-2899
pysmb.py in system-config-printer 0.6.x and 0.7.x, as used in foomatic-gui and possibly other products, allows remote SMB servers to execute arbitrary commands via shell metacharacters in the 1 NetBIOS or 2 workgroup name, which are not properly handled when searching for network printers...
CVE-2021-39367
Canon Oce Print Exec Workgroup 1.3.2 allows Host header injection...
CVE-2021-39367
Canon Oce Print Exec Workgroup 1.3.2 allows Host header injection...
CVE-2021-39368
Canon Oce Print Exec Workgroup 1.3.2 allows XSS via the lang parameter...
Design/Logic Flaw
Canon Oce Print Exec Workgroup 1.3.2 allows Host header injection...
CVE-2021-39368
Canon Oce Print Exec Workgroup 1.3.2 allows XSS via the lang parameter...
CVE-2021-39368
CVE-2021-39368 affects Canon Oce Print Exec Workgroup 1.3.2, where an XSS flaw exists in the lang parameter. The vulnerability targets the application’s web interface and allows script execution in a user’s browser. References in connected records corroborate the XSS claim; no explicit exploit de...
CVE-2021-39367
CVE-2021-39367 affects Canon Oce Print Exec Workgroup 1.3.2 and concerns a vulnerability where the host header can be injected. This is documented across multiple sources (NVD and RH Red Hat entries). The vulnerability is described as a host header injection issue; no exploit details or affected ...
CVE-2021-39367
Canon Oce Print Exec Workgroup 1.3.2 allows Host header injection...
Canon Oce Print Exec Workgroup 跨站脚本漏洞
Canon Oce Print Exec Workgroup is a software application from Canon Japan. It is a program that displays basic printer information. A security vulnerability exists in Canon Oce Print Exec Workgroup version 1.3.2, which allows an attacker to conduct XSS attacks via the lang parameter...
SMB12 Information Gathering Exploit
SMB12 Information Gathering is a data gathering python script that inspects SMB1 and SMB2 endpoints. It will extract various attributes from the remote server such as OS version only supported by SMB1 as per protocol definition, DNS computer name, DNS domain name, NetBIOS computer name and NetBIO...
Arbitrary Code Execution
system-config-printer is vulnerable to arbitrary code execution. The vulnerability exists as it was found that system-config-printer did not properly sanitize NetBIOS and workgroup names when searching for network printers. A remote attacker could use this flaw to execute arbitrary code with the...
Rockwell Automation Stratix 5100 Wireless Access Point and Workgroup Bridge < 15.4 Reusing a Nonce (ICSA-17-299-02)
Binary data 720291.prm...
Tableau - XML External Entity
Exploit Title: Tableau XXE Google Dork: N/A Date: Reported to vendor July 2019, fix released August 2019. Exploit Author: Jarad Kopf Vendor Homepage: https://www.tableau.com/ Software Link: Tableau Desktop downloads: https://www.tableau.com/products/desktop/download Version/Products: See Tableau...
gvfs security and bug fix update
1.36.2-3 - Force NT1 protocol version for workgroup support 1619719 1.36.2-2 - Prevent spawning new daemons if outgoing operation exists 1632960 - CVE-2019-3827: Prevent access if any authentication agent isnt available 1673887...
NetSetMan 4.7.1 - Workgroup Denial of Service Exploit
Exploit Title: NetSetMan 4.7.1 'Workgroup' - Denial of Service PoC Discovery by: Victor Mondragón Vendor Homepage: https://www.netsetman.com/ Software Link: https://www.netsetman.com/netsetman.exe Tested Version: 4.7.1 Tested on: Windows 10 Single Language x64 / Windows 7 x32 Service Pack 1 Steps...
NetSetMan 4.7.1 - Workgroup Denial of Service (PoC)
NetSetMan 4.7.1 - Workgroup Denial of Service PoC Exploit Title: NetSetMan 4.7.1 'Workgroup' - Denial of Service PoC Discovery by: Victor Mondragón Discovery Date: 2018-02-17 Vendor Homepage: https://www.netsetman.com/ Software Link: https://www.netsetman.com/netsetman.exe Tested Version: 4.7.1...
NetSetMan 4.7.1 - 'Workgroup' Denial of Service (PoC)
Exploit Title: NetSetMan 4.7.1 'Workgroup' - Denial of Service PoC Discovery by: Victor Mondragón Discovery Date: 2018-02-17 Vendor Homepage: https://www.netsetman.com/ Software Link: https://www.netsetman.com/netsetman.exe Tested Version: 4.7.1 Tested on: Windows 10 Single Language x64 / Windows...
Security Bulletin: Security vulnerabilities have been identified in IBM® DB2® shipped with IBM InfoSphere Information Server and IBM InfoSphere DataClick (CVE-2013-6747, CVE-2014-0963)
Summary IBM DB2 is shipped as a component of IBM InfoSphere Information Server and IBM InfoSphere Data Click. Information about security vulnerabilities affecting IBM DB2 has been published in a security bulletin. Vulnerability Details Please consult the security bulletin IBM DB2 is impacted by...