Lucene search
+L

609 matches found

veracode
veracode
added 2017/04/06 7:36 a.m.24 views

XML External Entity (XXE)

amf-serializer is vulnerable to to XML External Entity XXE. The library's AMF3 deserializers allow for external entity references from XML documents embedded in AMF3 messages...

9.8CVSS9.2AI score0.0368EPSS
Exploits2References6Affected Software1
veracode
veracode
added 2017/04/06 2:55 a.m.33 views

Remote Code Execution (RCE) Via Deserialization Of Untrusted Data

amf-serializer is vulnerable to remote code execution RCE via deserialization of untrusted data. The vulnerability is possible because it has a flaw in AMF3 deserialization using AMF3Deserializer.readAMF3Object. This allows attackers to request a Remote Method Invocation RMI remote object from th...

8.1CVSS8.9AI score0.05385EPSS
Exploits2References6Affected Software1
seebug
seebug
added 2017/04/06 12:0 a.m.81 views

AMF3 Java implementations deserialization Vulnerability

Details reference: https://codewhitesec.blogspot.kr/2017/04/amf.html Some Java implementations of AMF3 deserializers derive class instances from java. io. Externalizable rather than the AMF3 specification's recommendation of a flash. utils. IExternalizable. A remote attacker with the ability to...

7.5CVSS9.6AI score0.16239EPSS
Exploits5
seebug
seebug
added 2017/04/06 12:0 a.m.63 views

AMF3 Java implementations Improper Control of Dynamically-Managed Code Resources

Details reference: https://codewhitesec.blogspot.kr/2017/04/amf.html Some Java implementations of AMF3 deserializers may allow instantiation of arbitrary classes via their public parameter-less constructor and subsequently call arbitrary Java Beans setter methods. The ability to exploit this...

9.5AI score0.21274EPSS
Exploits6
veracode
veracode
added 2017/04/04 6:53 a.m.13 views

Remote Code Execution (RCE) Via Deserialization Of Untrusted Data

flex-messaging-core is vulnerable to remote code execution RCE via deserialization of untrusted data. The vulnerability is possible because it has a flaw in AMF deserialization using Externalizable.readExternalObjectInput, allowing attackers to request a RMI remote object from the endpoint and...

7.7AI score
Exploits0
cert
cert
added 2017/04/04 12:0 a.m.518 views

Action Message Format (AMF3) Java implementations are vulnerable to insecure deserialization and XML external entities references

Overview Several Java implementations of AMF3 are vulnerable to insecure deserialization and XML external entities references. Description Several Java implementations of Action Message Format AMF3 are vulnerable to one or more of the following implementation errors:CWE-502: Deserialization of...

9.8CVSS9AI score0.21274EPSS
Exploits12References7
zdt
zdt
added 2017/02/22 12:0 a.m.62 views

Adobe Flash - MP4 AMF Parsing Overflow Exploit

Exploit for multiple platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1018 There is an overflow in MP4 AMF parsing. To reproduce, put the attached files on a server and visit http://127.0.0.1/LoadMP4.swf?file=unsigned.mp4. 0day.today 2018-01-01...

10CVSS0.8AI score0.32676EPSS
Exploits2
exploitpack
exploitpack
added 2017/02/21 12:0 a.m.13 views

Adobe Flash - MP4 AMF Parsing Overflow

Adobe Flash - MP4 AMF Parsing Overflow Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1018 There is an overflow in MP4 AMF parsing. To reproduce, put the attached files on a server and visit http://127.0.0.1/LoadMP4.swf?file=unsigned.mp4. Proof of Concept:...

1.3AI score
Exploits0
exploitdb
exploitdb
added 2017/02/21 12:0 a.m.40 views

Adobe Flash - MP4 AMF Parsing Overflow

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1018 There is an overflow in MP4 AMF parsing. To reproduce, put the attached files on a server and visit http://127.0.0.1/LoadMP4.swf?file=unsigned.mp4. Proof of Concept:...

7.4AI score
Exploits0
nvd
nvd
added 2016/03/25 9:59 p.m.18 views

CVE-2016-2340

The AMF framework in Granite Data Services 3.1.1-SNAPSHOT allows remote authenticated users to read arbitrary files, send TCP requests to intranet servers, or cause a denial of service via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entit...

5.5CVSS5.4AI score0.01643EPSS
Exploits1References2
prion
prion
added 2016/03/25 9:59 p.m.22 views

Xxe

The AMF framework in Granite Data Services 3.1.1-SNAPSHOT allows remote authenticated users to read arbitrary files, send TCP requests to intranet servers, or cause a denial of service via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entit...

5.5CVSS6.9AI score0.01643EPSS
Exploits1References2Affected Software1
cvelist
cvelist
added 2016/03/25 9:0 p.m.29 views

CVE-2016-2340

The AMF framework in Granite Data Services 3.1.1-SNAPSHOT allows remote authenticated users to read arbitrary files, send TCP requests to intranet servers, or cause a denial of service via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entit...

5.7AI score0.01643EPSS
Exploits1References2
cve
cve
added 2016/03/25 9:0 p.m.53 views

CVE-2016-2340

CVE-2016-2340 affects Granite Data Services (GraniteDS) AMF framework in version 3.1.1-SNAPSHOT. The vulnerability is an XML External Entity (XXE) issue that, when parsing XML, can allow remote authenticated users to read arbitrary files, issue TCP requests to intranet servers, or cause a denial ...

5.5CVSS5.5AI score0.01643EPSS
Exploits1References2Affected Software1
cert
cert
added 2016/03/24 12:0 a.m.55 views

Granite Data Services AMF framework fails to properly parse XML input containing a reference to external entities

Overview Granite Data Services version 3.1.1-SNAPSHOT AMF framework is vulnerable to XML external entity XXE attack that may be leveraged to expose sensitive data on the host.. Description CWE-611- Improper Restriction of XML External Entity Reference 'XXE' - CVE-2016-2340 Granite Data Services...

5.5CVSS5AI score0.01643EPSS
Exploits1References2
archlinux
archlinux
added 2016/01/02 12:0 a.m.27 views

rtmpdump: multiple issues

Several issues have been found in the part of rtmpdump handling RTMP streams by LMX of Qihoo 360 Codesafe Team. These issues include memory leak, integer overflow, type confusion when dealing with AMF strings and objects, and several other parsing issues...

7.2AI score
Exploits0References2
nessus
nessus
added 2015/12/18 12:0 a.m.13 views

FreeBSD : py-amf -- input sanitization errors (1fbd6db1-a4e4-11e5-b864-14dae9d210b8)

oCERT reports : A specially crafted AMF payload, containing malicious references to XML external entities, can be used to trigger Denial of Service DoS conditions or arbitrarily return the contents of files that are accessible with the running application privileges. %NASLMINLEVEL 70300 C Tenable...

7.1CVSS6.9AI score0.01378EPSS
Exploits0References3
freebsd
freebsd
added 2015/12/01 12:0 a.m.23 views

py-amf -- input sanitization errors

oCERT reports: A specially crafted AMF payload, containing malicious references to XML external entities, can be used to trigger Denial of Service DoS conditions or arbitrarily return the contents of files that are accessible with the running application privileges...

7.1CVSS6.8AI score0.01378EPSS
Exploits0References1
packetstorm
packetstorm
added 2015/11/23 12:0 a.m.56 views

Apache Flex BlazeDS 4.7.1 SSRF

CVE-2015-5255: SSRF vulnerability in Apache Flex BlazeDS 4.7.1 Severity: Important Vendor: The Apache Software Foundation Versions Affected: BlazeDS 4.7.0 and 4.7.1 Description: The code in BlazeDS to deserialize AMF XML datatypes allows so-called SSRF Attacks Server Side Request Forgery in which...

4.3CVSS0.3AI score0.04482EPSS
Exploits1
prion
prion
added 2015/08/25 1:59 a.m.16 views

Xxe

Apache Flex BlazeDS, as used in flex-messaging-core.jar in Adobe LiveCycle Data Services LCDS 3.0.x before 3.0.0.354170, 4.5 before 4.5.1.354169, 4.6.2 before 4.6.2.354169, and 4.7 before 4.7.0.354169 and other products, allows remote attackers to read arbitrary files via an AMF message containin...

5CVSS7AI score0.0954EPSS
Exploits2References9Affected Software2
cvelist
cvelist
added 2015/08/25 1:0 a.m.38 views

CVE-2015-3269

Apache Flex BlazeDS, as used in flex-messaging-core.jar in Adobe LiveCycle Data Services LCDS 3.0.x before 3.0.0.354170, 4.5 before 4.5.1.354169, 4.6.2 before 4.6.2.354169, and 4.7 before 4.7.0.354169 and other products, allows remote attackers to read arbitrary files via an AMF message containin...

5AI score0.0954EPSS
Exploits2References9
Rows per page
Query Builder