Lucene search
K

5 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.61 views

LANDesk Management Gateway 'gsb/drivers.php'代码注入漏洞

No description provided by source. 1. Advisory Information Title: Landesk OS command injection Advisory Id: CORE-2010-1018 Advisory URL: http://www.coresecurity.com/content/landesk-os-command-injection-vulnerability Date published: 2010-11-10 Date of last update: 2010-11-10 Vendors contacted:...

8.5CVSS6.5AI score0.03508EPSS
Exploits6
seebug.org
seebug.org
added 2010/11/17 12:0 a.m.31 views

LANDesk管理套件HTML表单请求命令注入漏洞

BUGTRAQ ID: 44781 CVE ID: CVE-2010-2892 Landesk管理套件是一款网络管理系统,可控制桌面,服务器和移动设备等。 Landesk没有正确地验证提交特制请求的用户来源。如果管理员使用攻击者的浏览器登录到了设备,攻击者就可以以gsbadmin用户权限执行任意代码。 LANDesk Software LANDesk Management Gateway 4.2 GSBWEB v1.61 LANDesk Software LANDesk Management Gateway 4.0 GSBWEB v1.61s 临时解决方法: 1...

8.5CVSS6.4AI score0.03508EPSS
Exploits6
CVE
CVE
added 2010/11/15 8:0 p.m.64 views

CVE-2010-2892

The CVE-2010-2892 vulnerability affects LANDesk Management Gateway 4.0 (GSBWEB v1.61s) and 4.2 (GSBWEB v1.61), where the gsb/drivers.php component processes the DRIVES parameter without proper validation. This allows remote authenticated administrators to execute arbitrary commands via shell meta...

8.5CVSS7.3AI score0.03508EPSS
Exploits6References8Affected Software1
exploitpack
exploitpack
added 2010/11/11 12:0 a.m.91 views

Landesk - OS command Injection

Landesk - OS command Injection 1. Advisory Information Title: Landesk OS command injection Advisory Id: CORE-2010-1018 Advisory URL: http://www.coresecurity.com/content/landesk-os-command-injection-vulnerability Date published: 2010-11-10 Date of last update: 2010-11-10 Vendors contacted: LANDesk...

8.5CVSS0.4AI score0.03508EPSS
Exploits6
Exploit DB
Exploit DB
added 2010/11/11 12:0 a.m.73 views

Landesk - OS command Injection

Advisory Information Title: Landesk OS command injection Advisory Id: CORE-2010-1018 Advisory URL: http://www.coresecurity.com/content/landesk-os-command-injection-vulnerability Date published: 2010-11-10 Date of last update: 2010-11-10 Vendors contacted: LANDesk Release mode: Coordinated...

8.5CVSS6.5AI score0.03508EPSS
Exploits6
Rows per page
Query Builder