7991 matches found
How to Enable HA Using XenServer CLI
This article describes how to enable HA using XenServer CLI. HA can be enabled on a pool using either XenCenter or the command-line interface. In either case, you will specify a set of priorities that determine which VMs should be given highest restart priority when a pool is over committed...
BruteXSS - Tool to find XSS vulnerabilities in web application
BruteXSS is a tool written in python simply to find XSS vulnerabilities in web application. This tool was originally developed by Shawar Khan in CLI. I just redesigned it and made it GUI for more convienience. This tool is developed in Python, so obviously cross platform, you just need Python...
Kernel Vulnerability
A vulnerability exists in the kernel of PAN-OS that may result in an elevation of privilege. This issue is publicly known as Dirty COW ref PAN-68074 / CVE-2016-5195. PAN-OS may be impacted by the Dirty COW CVE-2016-5195 attack. A race condition was found in the way the Linux kernel's memory...
MongoDB Security Audit: mongoaudit
MongoDB Security Audit mongoaudit is a CLI tool for auditing MongoDB servers, detecting poor security settings and performing automated penetration testing. It is widely known that there are quite a few holes in MongoDB’s default configuration settings. This fact, combined with abundant lazy syst...
[SECURITY] Fedora 25 Update: wireshark-2.2.4-1.fc25
Metapackage with installs wireshark-cli and wireshark-qt...
Design/Logic Flaw
A vulnerability in CLI command processing in the Cisco Firepower 4100 Series Next-Generation Firewall and Cisco Firepower 9300 Security Appliance could allow an authenticated, local attacker to inject arbitrary shell commands that are executed by the device. More Information: CSCvb61343. Known...
CVE-2017-3806
A vulnerability in CLI command processing in the Cisco Firepower 4100 Series Next-Generation Firewall and Cisco Firepower 9300 Security Appliance could allow an authenticated, local attacker to inject arbitrary shell commands that are executed by the device. More Information: CSCvb61343. Known...
CVE-2017-3806
A vulnerability in CLI command processing in the Cisco Firepower 4100 Series Next-Generation Firewall and Cisco Firepower 9300 Security Appliance could allow an authenticated, local attacker to inject arbitrary shell commands that are executed by the device. More Information: CSCvb61343. Known...
CVE-2017-3806
CVE-2017-3806 affects Cisco Firepower 4100 Series NGFW and Cisco Firepower 9300 Security Appliance. Description: an authenticated, local attacker can exploit vulnerable CLI command processing due to insufficient input validation to inject arbitrary shell commands executed by the device. Impact: l...
IBM UrbanCode Deploy Multiple Vulnerabilities
IBM UrbanCode Deploy is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:urbancodedeploy"; ...
RHEL 6 : jboss-ec2-eap (RHSA-2017:0250)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:0250 advisory. - tomcat: HTTP Request smuggling vulnerability due to permitting invalid character in HTTP requests CVE-2016-6816 - EAP: Sensitive data can ...
Design/Logic Flaw
IBM UrbanCode Deploy could allow an authenticated user with access to the REST endpoints to access API and CLI getResource secured role properties...
CVE-2016-6068
IBM UrbanCode Deploy could allow an authenticated user with access to the REST endpoints to access API and CLI getResource secured role properties...
CVE-2016-6068
IBM UrbanCode Deploy is affected by CVE-2016-6068. The IBM Security Bulletin confirms that an authenticated user with REST endpoint access could access API and CLI getResource secured role properties. Affected versions include 6.0.x through 6.2.x series listed in the bulletin, with remediation vi...
CVE-2016-6068
IBM UrbanCode Deploy could allow an authenticated user with access to the REST endpoints to access API and CLI getResource secured role properties...
[SECURITY] Fedora 24 Update: fedmsg-0.18.2-1.fc24
Python API used around Fedora Infrastructure to send and receive messages w ith zeromq. Includes some CLI tools...
[SECURITY] Fedora 25 Update: fedmsg-0.18.2-1.fc25
Python API used around Fedora Infrastructure to send and receive messages w ith zeromq. Includes some CLI tools...
CVE-2017-5495
All versions of Quagga, 0.93 through 1.1.0, are vulnerable to an unbounded memory allocation in the telnet 'vty' CLI, leading to a Denial-of-Service of Quagga daemons, or even the entire host. When Quagga daemons are configured with their telnet CLI enabled, anyone who can connect to the TCP port...
Input validation
All versions of Quagga, 0.93 through 1.1.0, are vulnerable to an unbounded memory allocation in the telnet 'vty' CLI, leading to a Denial-of-Service of Quagga daemons, or even the entire host. When Quagga daemons are configured with their telnet CLI enabled, anyone who can connect to the TCP port...
CVE-2017-5495
CVE-2017-5495 affects Quagga 0.93–1.1.0, where the telnet vty CLI input buffer can grow without bound when no newline is entered. This unbounded memory allocation allows a remote attacker who can connect to the Quagga telnet ports (often exposed locally) to cause Denial-of-Service to Quagga daemo...