EUVD-2000-0951

Malware in sbrugna...

EUVD-2017-12891

Malware in sbrugna...

CVE-2003-0942

Buffer overflow in Web Agent Administration service in web-tools for SAP DB before 7.4.03.30 allows remote attackers to execute arbitrary code via a long Name parameter to waadmin.wa...

CVE-2008-0725

Multiple heap-based buffer overflows in the 1 FTP service and 2 administration service in Titan FTP Server 6.0.5.549 allow remote attackers to cause a denial of service daemon hang and possibly execute arbitrary code via a long command. NOTE: the USER and PASS commands for the FTP service are...

CVE-1999-0380

SLMail 3.1 and 3.2 allows local users to access any file in the NTFS file system when the Remote Administration Service RAS is enabled by setting a user's Finger File to point to the target file, then running finger on the user...

CVE-2023-49229

An issue was discovered in Peplink Balance Two before 8.4.0. A missing authorization check in the administration web service allows read-only, unprivileged users to obtain sensitive information about the device configuration...

PT-2022-27307 · Apache · Axis

Name of the Vulnerable Software and Affected Versions: Appalti & Contratti version 9.12.2 Description: An issue was discovered in the target web applications LFS and DL229, which expose a set of services provided by the Axis 1.4 instance. The Axis AdminService, normally accessible only by...

Sage X3 Administration Service Authentication Bypass / Command Execution Exploit

This Metasploit module leverages an authentication bypass exploit within Sage X3 AdxSrv's administration protocol to execute arbitrary commands as SYSTEM against a Sage X3 Server running an available AdxAdmin service. This module requires Metasploit: https://metasploit.com/download Current source...

CVE-2020-12271

A SQL injection issue was found in SFOS 17.0, 17.1, 17.5, and 18.0 before 2020-04-25 on Sophos XG Firewall devices, as exploited in the wild in April 2020. This affected devices configured with either the administration HTTPS service or the User Portal exposed on the WAN zone. A successful attack...

CVE-2020-12271: Sophos XG Firewall Pre-Auth SQL Injection Vulnerability

A SQL injection issue was found in SFOS 17.0, 17.1, 17.5, and 18.0 before 2020-04-25 on Sophos XG Firewall devices, as exploited in the wild in April 2020. This affected devices configured with either the administration HTTPS service or the User Portal exposed on the WAN zone. A successful attack...

SolarWinds Administration Service Detection (Windows SMB Login)

This script detects the installed version of SolarWinds Administration Service Monitor for Windows. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

CVE-2017-3774

A stack overflow vulnerability was discovered within the web administration service in Integrated Management Module 2 IMM2 earlier than version 4.70 used in some Lenovo servers and earlier than version 6.60 used in some IBM servers. An attacker providing a crafted user ID and password combination...

CVE-2014-0600

FileUploadServlet in the Administration service in Novell GroupWise 2014 before SP1 allows remote attackers to read or write to arbitrary files via the poLibMaintenanceFileSave parameter, aka ZDI-CAN-2287...

CVE-2014-0600

The CVE-2014-0600 issue affects Novell GroupWise 2014 Administration Service, specifically the FileUploadServlet. The vulnerability arises from how the poLibMaintenanceFileSave parameter is handled, enabling directory traversal that allows remote attackers to read or write arbitrary files on the ...

Code injection

FileUploadServlet in the Administration service in Novell GroupWise 2014 before SP1 allows remote attackers to read or write to arbitrary files via the poLibMaintenanceFileSave parameter, aka ZDI-CAN-2287...

Juniper NSM GUI Server Detection

The remote host is running the Juniper NSM GUI Server. The NSM GUI accepts connections from users using the NSM GUI Client, which allows for administration of the NSM servers. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid69870; scriptversion"1.9";...

MIT Kerberos V5 KAdminD klog_vsyslog Server Stack Buffer Overflow (CVE-2007-0957)

Kerberos is a protocol suite which allows for the negotiation of authenticated, and optionally encrypted, communication between two points on a network. MIT Kerberos V5 is an implementation of this protocol suite. There exists a buffer overflow vulnerability in MIT Kerberos. The vulnerability is...

WinComLPD 3.0.2 - Remote Buffer Overflow (Metasploit)

$Id: wincomlpdadmin.rb 9583 2010-06-22 19:11:05Z todb $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Macromedia Flash Media Server Administration Service Denial of Service (CVE-2005-4216)

Macromedia Flash Media Server software provides streaming media capabilities and an environment for creating and delivering interactive media applications. The Flash Media Server can be administered through an administration server that listens on TCP port 1111 by default. There exists a denial o...

Buffer overflow

Multiple buffer overflows in Client Software WinCom LPD Total 3.0.2.623 and earlier allow remote attackers to execute arbitrary code via 1 a long 0x02 command to the remote administration service on TCP port 13500 or 2 a long invalid control filename to LPDService.exe on TCP port 515...