Lucene search
K

96 matches found

hackerone
hackerone
added 2019/08/18 1:18 a.m.28 views

Valve: [GoldSrc] Remote Code Execution using malicious WAD list in BSP file

Summary TEXInitFromWad function calls COMFileBase to get file name from a path into a buffer on the stack. Since COMFileBase does not have boundary checks and the buffer is small, long WAD file name can trigger a Stack Buffer Overflow, leading to arbitrary code execution. Steps to reproduce...

2.8AI score
Exploits0
ics
ics
added 2019/06/27 12:0 a.m.57 views

ABB CP635 HMI

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable from adjacent network/low skill level to exploit Vendor: ABB Equipment: CP635 HMI Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to prevent legitimate...

8.8CVSS9.1AI score0.02895EPSS
Exploits1References6
ics
ics
added 2019/06/27 12:0 a.m.42 views

ABB CP651 HMI

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable from adjacent network/low skill level to exploit Vendor: ABB Equipment: CP651 HMI Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to prevent legitimate...

8.8CVSS9.2AI score0.00726EPSS
Exploits0References6
hackerone
hackerone
added 2018/05/13 12:57 a.m.64 views

Valve: Malformed .BSP Access Violation in CS:GO can lead to Remote Code Execution

A malformed .BSP can trigger an Access Violation on CS:GO that can lead to arbitrary code execution on a remote computer. I have attached a copy of the malformed .BSP which reliably triggers an Access Violation on CS:GO. Impact An attacker hosting a malicious server could compromise a remote clie...

4AI score
Exploits0
nvidia
nvidia
added 2018/01/05 12:0 a.m.82 views

Security Bulletin: NVIDIA Jetson TX1, Jetson TK1, and Tegra K1 L4T Security Updates for CPU Speculative Side Channel Vulnerabilities

Jetson and Tegra L4T response to CPU speculative side channel vulnerabilities - CVE-2017-5753, CVE-2017-5715, CVE-2017-5754 Bulletin Summary NVIDIA is providing an initial security update to mitigate aspects of Google Project Zero's January 3, 2018, publication of novel information disclosure...

5.6CVSS7AI score0.93838EPSS
Exploits13Affected Software3
openbugbounty
openbugbounty
added 2017/09/15 6:28 p.m.9 views

bsp.com.fj XSS vulnerability

Vulnerable URL: http://www.bsp.com.fj/General/Search.aspx?q=1%2522%2527--%253E%253CSvg%2520O%256ELoad%253Dconfirm%25281%2529%253E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 14.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...

6.3AI score
Exploits0
openbugbounty
openbugbounty
added 2017/09/15 6:22 p.m.16 views

bsp.com.pg XSS vulnerability

Vulnerable URL: http://www.bsp.com.pg/General/Search.aspx?q=1%2522%2527--%253E%253CSvg%2520O%256ELoad%253Dconfirm%25281%2529%253E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 14.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 478...

6.3AI score
Exploits0
exploitdb
exploitdb
added 2017/07/07 12:0 a.m.44 views

Counter Strike: Condition Zero - '.BSP' Map File Code Execution

!/usr/bin/env python Counter Strike: Condition Zero BSP map exploit By @DigitalCold Jun 11, 2017 E-DB Note: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/42325.zip bsp-exploit-source.zip from binascii import hexlify, unhexlify from struct import pack, unpack...

7.4AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.15 views

SAP Web Application Server 6.x/7.0 frameset.htm sap-syscmd Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15361/info SAP Web Application Server is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage thes...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.22 views

SAP Web Application Server 6.x/7.0 Error Page XSS

No description provided by source. source: http://www.securityfocus.com/bid/15361/info SAP Web Application Server is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage thes...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2011/03/15 12:0 a.m.70 views

[DSECRG-11-010] SAP NetWeaver logon.html - XSS

DSECRG-11-010 SAP NetWeaver logon.html - XSS SAP NetWeaver BSP logon page has linked XSS vulnerability. Digital Security Research Group DSecRG Advisory DSecRG-11-010 Internal DSecRG-00127 Application: SAP NetWeaver Versions Affected: SAP NetWeaver SAPBASIS 620-730 Vendor URL: http://www.sap.com...

0.1AI score
Exploits0
packetstorm
packetstorm
added 2008/05/22 12:0 a.m.38 views

DSECRG-08-023.txt

Digital Security Research Group DSecRG Advisory DSECRG-08-023 Application: SAP Web Application Server Versions Affected: Version 7.0 Vendor URL: http://SAP.com Bugs: XSS Exploits: YES Reported: 25.01.2008 Vendor response: 25.01.2008 Date of Public Advisory: 21.05.2008 Author: Digital Security...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2008/05/22 12:0 a.m.55 views

[DSECRG-08-023] SAP Web Application Server XSS Security Vulnerability

Digital Security Research Group DSecRG Advisory DSECRG-08-023 Application: SAP Web Application Server Versions Affected: Version 7.0 Vendor URL: http://SAP.com Bugs: XSS Exploits: YES Reported: 25.01.2008 Vendor response: 25.01.2008 Date of Public Advisory: 21.05.2008 Author: Digital Security...

6.2AI score
Exploits0
exploitpack
exploitpack
added 2005/11/09 12:0 a.m.12 views

SAP Web Application Server 6.x7.0 - Open Redirection

SAP Web Application Server 6.x7.0 - Open Redirection source: https://www.securityfocus.com/bid/15362/info SAP Web Application Server is reported prone to a remote URI redirection vulnerability. It is reported that an attacker can exploit this issue by supplying the URI of a malicious site through...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2005/11/09 12:0 a.m.31 views

SAP Web Application Server 6.x/7.0 - 'frameset.htm?sap-syscmd' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15361/info SAP Web Application Server is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2005/11/09 12:0 a.m.21 views

SAP Web Application Server 6.x/7.0 - Open Redirection

source: https://www.securityfocus.com/bid/15362/info SAP Web Application Server is reported prone to a remote URI redirection vulnerability. It is reported that an attacker can exploit this issue by supplying the URI of a malicious site through the 'sap-exiturl' parameter. A successful attack may...

7.4AI score
Exploits0
Rows per page
Query Builder