30 matches found
EUVD-2007-4209
Malware in sbrugna...
EUVD-2007-4188
Malware in sbrugna...
EUVD-2007-4373
Malware in sbrugna...
BlueCat Networks Adonis 5.0.2 .8 TFTP Remote Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25214/info BlueCat Networks Adonis devices are prone to a remote privilege-escalation vulnerability. This issue occurs when Proteus appliances are used to upload files to an affected Adonis appliance for TFTP download. An...
BlueCat Networks Adonis 5.0.2 .8 CLI Remote Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25342/info BlueCat Networks Adonis devices are prone to a remote privilege-escalation vulnerability because the software fails to properly sanitize user-supplied input. An attacker with administrative privileges can explo...
BIND 9 DNSSEC validation code could cause fake NXDOMAIN responses
Overview A vulnerability exists in the BIND 9 DNSSEC validation code that could be used by an attacker to generate fake NXDOMAIN responses. Description BIND 9 contains a vulnerability in DNSSEC validation code. According to ISC: There was an error in the DNSSEC NSEC/NSEC3 validation code that cou...
libspf2 DNS TXT record parsing buffer overflow
Overview libspf2 contains a buffer overflow vulnerability in code that parses DNS TXT records. Description libspf2 is a widely-deployed implementation of the Sender Policy Framework. According to RFC 4408: An SPF record is a DNS Resource Record RR that declares which hosts are, and are not,...
Multiple Vendor DNS Protocol Insufficient Transaction ID Randomization DNS Spoofing Vulnerability
Description Multiple vendors' implementations of the DNS protocol are prone to a DNS-spoofing vulnerability because the software fails to securely implement random values when performing DNS queries. Successfully exploiting this issue allows remote attackers to spoof DNS replies, allowing them to...
BlueCat Networks Adonis CLI远程权限提升漏洞
BUGTRAQ ID: 25342 Adonis是企业级的硬件DNS/DHCP管理设备。 Adonis设备对命令行请求的处理上存在漏洞,本地攻击者可能利用此漏洞控制设备。 如果在Adonis设备的管理员帐号所提供的CLI输入某个命令序列的话,就可能允许管理员以root用户权限执行命令。 Bluecat Networks Adonis 5.0.2.8 临时解决方法: 仅为可root访问设备的管理员提供管理员帐号。 厂商补丁: Bluecat Networks ---------------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
CVE-2007-4390
The Command Line Interface CLI, aka Adonis Administration Console, on the BlueCat Networks Adonis DNS/DHCP appliance 5.0.2.8 allows local admin users to gain root privileges on the underlying operating system via shell metacharacters in a command...
Command injection
The Command Line Interface CLI, aka Adonis Administration Console, on the BlueCat Networks Adonis DNS/DHCP appliance 5.0.2.8 allows local admin users to gain root privileges on the underlying operating system via shell metacharacters in a command...
CVE-2007-4390
The CVE-2007-4390 issue affects BlueCat Networks Adonis DNS/DHCP appliance (CLI/Adonis Administration Console) version 5.0.2.8. The vulnerability allows local admin users to gain root privileges on the underlying OS by injecting shell metacharacters in a command. Documents confirm the affected co...
TS-2007-003-0: BlueCat Networks Adonis CLI root privilege escalation
Template Security Security Advisory ----------------------------------- BlueCat Networks Adonis CLI root privilege escalation Date: 2007-08-16 Advisory ID: TS-2007-003-0 Vendor: BlueCat Networks, http://www.bluecatnetworks.com/ Revision: 0 Contents -------- Summary Software Version Details Impact...
TS-2007-003-0.txt
Template Security Security Advisory ----------------------------------- BlueCat Networks Adonis CLI root privilege escalation Date: 2007-08-16 Advisory ID: TS-2007-003-0 Vendor: BlueCat Networks, http://www.bluecatnetworks.com/ Revision: 0 Contents -------- Summary Software Version Details Impact...
BlueCat Networks Adonis 5.0.2.8 - CLI Privilege Escalation
source: https://www.securityfocus.com/bid/25342/info BlueCat Networks Adonis devices are prone to a remote privilege-escalation vulnerability because the software fails to properly sanitize user-supplied input. An attacker with administrative privileges can exploit this issue to execute arbitrary...
BlueCat Networks Adonis 5.0.2.8 - CLI Privilege Escalation
BlueCat Networks Adonis 5.0.2.8 - CLI Privilege Escalation source: https://www.securityfocus.com/bid/25342/info BlueCat Networks Adonis devices are prone to a remote privilege-escalation vulnerability because the software fails to properly sanitize user-supplied input. An attacker with...
Directory traversal
Directory traversal vulnerability in the BlueCat Networks Proteus IPAM appliance 2.0.2.0 Adonis DNS/DHCP appliance 5.0.2.8 allows remote authenticated administrators, with certain TFTP privileges, to create and overwrite arbitrary files via a .. dot dot in a pathname. NOTE: this can be leveraged...
CVE-2007-4226
Directory traversal vulnerability in the BlueCat Networks Proteus IPAM appliance 2.0.2.0 Adonis DNS/DHCP appliance 5.0.2.8 allows remote authenticated administrators, with certain TFTP privileges, to create and overwrite arbitrary files via a .. dot dot in a pathname. NOTE: this can be leveraged...
CVE-2007-4226
Directory traversal vulnerability in the BlueCat Networks Proteus IPAM appliance 2.0.2.0 Adonis DNS/DHCP appliance 5.0.2.8 allows remote authenticated administrators, with certain TFTP privileges, to create and overwrite arbitrary files via a .. dot dot in a pathname. NOTE: this can be leveraged...
CVE-2007-4226
CVE-2007-4226 describes a directory traversal in the BlueCat Networks Proteus IPAM appliance 2.0.2.0 (Adonis DNS/DHCP appliance 5.0.2.8). The vulnerability allows remote authenticated administrators with certain TFTP privileges to create and overwrite arbitrary files through a .. in a pathname, w...