173 matches found
CVE-2012-1816
CVE-2012-1816 affects Emerson DeltaV and DeltaV Workstations (V9.3.1, V10.3.1, V11.3, V11.3.1) and DeltaV ProEssentials Scientific Graph 5.0.0.6. The issue is described as an implicit memory-bounds vulnerability in PORTSERV.exe that allows remote attackers to cause a denial of service (daemon cra...
CVE-2012-1815
SQL injection vulnerability in Emerson DeltaV and DeltaV Workstations 9.3.1, 10.3.1, 11.3, and 11.3.1 and DeltaV ProEssentials Scientific Graph 5.0.0.6 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2012-1817
CVE-2012-1817 affects Emerson DeltaV/DeltaV Workstations (V9.3.1, V10.3.1, V11.3, V11.3.1) and DeltaV ProEssentials Scientific Graph 5.0.0.6. Root cause: buffer overflow from invalid fields in a project file, enabling user-assisted remote code execution or denial of service (daemon crash). Exploi...
CVE-2012-1815
CVE-2012-1815 affects Emerson DeltaV DeltaV Workstations (V9.3.1, V10.3.1, V11.3, V11.3.1) and DeltaV ProEssentials Scientific Graph 5.0.0.6. The vulnerability is described as a SQL injection that allows remote attackers to execute arbitrary SQL commands via unspecified vectors. The NVD entry lis...
CVE-2012-1814
Cross-site scripting XSS vulnerability in Emerson DeltaV and DeltaV Workstations 9.3.1, 10.3.1, 11.3, and 11.3.1 and DeltaV ProEssentials Scientific Graph 5.0.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2012-1818
The CVE-2012-1818 issue affects Emerson DeltaV and DeltaV Workstations (versions 9.3.1, 10.3.1, 11.3, 11.3.1) and DeltaV ProEssentials Scientific Graph 5.0.0.6. An unspecified ActiveX control may allow remote attackers to overwrite arbitrary files via unknown vectors. Public sources describe this...
Emerson DeltaV Multiple Vulnerabilities
Overview ICS-CERT originally released Advisory ICSA-12-138-01P to the US-CERT secure portal on May 17, 2012, and released Update A on May 21, 2012. This web page release including Update A was delayed to allow users time to download and install the update. Researcher Kuang-Chun Hung of the Securi...
Windows Recon Computer Browser Discovery
This module uses railgun to discover hostnames and IPs on the network. LTYPE should be set to one of the following values: WK all workstations, SVR all servers, SQL all SQL servers, DC all Domain Controllers, DCBKUP all Domain Backup Servers, NOVELL all Novell servers, PRINTSVR all Print Que...
ASPR #2011-08-18-2: Remote Binary Planting in Mozilla Thunderbird
=====BEGIN-ACROS-REPORT===== PUBLIC ========================================================================= ACROS Security Problem Report 2011-08-18-2 ------------------------------------------------------------------------- ASPR 2011-08-18-2: Remote Binary Planting in Mozilla Thunderbird...
CVE-2011-2978
Bugzilla 2.16rc1 through 2.22.7, 3.0.x through 3.3.x, 3.4.x before 3.4.12, 3.5.x, 3.6.x before 3.6.6, 3.7.x, 4.0.x before 4.0.2, and 4.1.x before 4.1.3 does not prevent changes to the confirmation e-mail address aka oldemail field for e-mail change notifications, which makes it easier for remote...
Mandriva Update for mandriva-doc MDVA-2010:209 (mandriva-doc)
Check for the Version of mandriva-doc OpenVAS Vulnerability Test Mandriva Update for mandriva-doc MDVA-2010:209 mandriva-doc Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
CVE-2010-1243
The IBM Web Interface for Content Management aka WEBi before 1.0.4 creates persistent cookies on client workstations, which has unspecified impact and attack vectors...
Code injection
The IBM Web Interface for Content Management aka WEBi before 1.0.4 creates persistent cookies on client workstations, which has unspecified impact and attack vectors...
CVE-2010-1243
The IBM Web Interface for Content Management aka WEBi before 1.0.4 creates persistent cookies on client workstations, which has unspecified impact and attack vectors...
Novell ZENworks Desktop Management ActiveX Control Buffer Overflow (CVE-2008-5073)
Novel ZENworks Desktop Management is a resource management solution for workstations and laptops. The product include various software components that are installed on management and managed computers. One of these software components is an ActiveX control implemented in file AxNalServer.dll. A...
DEBIAN-CVE-2009-4642
gnome-screensaver 2.26.1 relies on the gnome-session D-Bus interface to determine session idle time, even when an Xfce desktop such as Xubuntu or Mythbuntu is used, which allows physically proximate attackers to access an unattended workstation on which screen locking had been intended...
CVE-2009-4642
gnome-screensaver 2.26.1 relies on the gnome-session D-Bus interface to determine session idle time, even when an Xfce desktop such as Xubuntu or Mythbuntu is used, which allows physically proximate attackers to access an unattended workstation on which screen locking had been intended...
CVE-2009-4641
gnome-screensaver 2.28.0 does not resume adherence to its activation settings after an inhibiting application becomes unavailable on the session bus, which allows physically proximate attackers to access an unattended workstation on which screen locking had been intended...
F-Secure Products Malware Detection Bypass Vulnerability (Windows)
This host is installed with F-Secure Product and is prone to Malware Detection Bypass Vulnerability. OpenVAS Vulnerability Test $Id: secpodfsecureprdtssecbypassvulnwin.nasl 5369 2017-02-20 14:48:07Z cfi $ F-Secure Products Malware Detection Bypass Vulnerability Windows Authors: Sharath S Copyrigh...
CVE-2009-0449
CVE-2009-0449 corresponds to a buffer overflow in klim5.sys within Kaspersky Anti-Virus for Workstations 6.0 and Anti-Virus 2008, enabling local privilege escalation via an IOCTL 0x80052110 call. The OpenVAS/NVD entries describe the affected driver and the local-exploit condition; CVSS v2 base sc...