8 matches found
Microsoft Host Integration Server 2006 Command Execution Vulnerability
This module exploits a command-injection vulnerability in Microsoft Host Integration Server 2006. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Host Integration Server 2006 Command...
MS08-059: Microsoft Host Integration Server (HIS) SNA RPC Request Remote Overflow (956695)
The remote host has HIS Host Integration Server installed. The version of this product contains a code execution vulnerability in its RPC interface. An attacker could exploit this flaw to execute arbitrary code on the remote host by making rogue RPC queries. C Tenable Network Security, Inc...
Microsoft Host Integration Server SNA RPC authentication bypass
Added: 10/15/2008 CVE: CVE-2008-3466 BID: 31620 OSVDB: 49068 Background Microsoft Host Integration Server is an enabling technology which allows integration of applications and data with new Windows solutions. Problem A vulnerability in Microsoft Host Integration Server allows remote...
iDefense Security Advisory 10.14.08: Microsoft Host Integration Server 2006 Command Execution Vulnerability
iDefense Security Advisory 10.14.08 http://labs.idefense.com/intelligence/vulnerabilities/ Oct 14, 2008 I. BACKGROUND The Host Integration Server is an application suite that is used to communicate with IBM mainframe servers. One of the components of the suite is a remote management interface. Th...
Microsoft Host Integration Server SNA RPC authentication bypass
Added: 10/15/2008 CVE: CVE-2008-3466 BID: 31620 OSVDB: 49068 Background Microsoft Host Integration Server is an enabling technology which allows integration of applications and data with new Windows solutions. Problem A vulnerability in Microsoft Host Integration Server allows remote...
MS08-059: Microsoft Host Integration Server (HIS) SNA RPC Request Remote Overflow (956695) (uncredentialed check)
The remote host has HIS Host Integration Server installed. The remote version of this product is affected by a code execution vulnerability in its RPC interface. An attacker could exploit this flaw to execute arbitrary code on the remote host by making rogue RPC queries. C Tenable Network Securit...
CVE-2008-3466
CVE-2008-3466 affects Microsoft Host Integration Server 2000, 2004, and 2006. The flaw resides in the SNA RPC service which does not properly restrict administrative RPC calls, enabling a remote attacker to bypass authentication and execute arbitrary code via a crafted SNA RPC message that calls ...
Microsoft Host Integration Server Remote Command Execution (MS08-059; CVE-2008-3466)
Microsoft Host Integration Server HIS is a gateway application that provides host access and integration, extending Microsoft Windows to other systems by integrating mission-critical host applications, data sources, messaging, and security systems. A remote code execution vulnerability has been...