Lucene search
K

6 matches found

Cvelist
Cvelist
added 2017/04/06 3:0 p.m.25 views

CVE-2017-7237

The Spiceworks TFTP Server, as distributed with Spiceworks Inventory 7.5, allows remote attackers to access the Spiceworks data\configurations directory by leveraging the unauthenticated nature of the TFTP service for all clients who can reach UDP port 69, as demonstrated by a WRQ aka Write reque...

9.5AI score0.06724EPSS
Exploits5References3
CVE
CVE
added 2017/04/06 3:0 p.m.56 views

CVE-2017-7237

The connected sources confirm CVE-2017-7237 affects Spiceworks Inventory 7.5’s TFTP server. An unauthenticated TFTP service on UDP port 69 allows remote attackers to access the Spiceworks data\configurations directory via a WRQ operation, with the CNVD entry noting potential file overwrite/upload...

9.8CVSS9.4AI score0.06724EPSS
Exploits5References3Affected Software1
0day.today
0day.today
added 2017/04/06 12:0 a.m.59 views

SpiceWorks 7.5 TFTP - Remote File Overwrite / Upload Vulnerability

Exploit for windows platform in category remote exploits + Credits: John Page AKA HYP3RLINX Vendor: ================== www.spiceworks.com Product: ================= Spiceworks - 7.5 Provides network inventory and monitoring of all the devices on the network by discovering IP-addressable devices. ...

7.5CVSS9.2AI score0.06724EPSS
Exploits5
exploitpack
exploitpack
added 2017/04/05 12:0 a.m.32 views

SpiceWorks 7.5 TFTP - Remote File Overwrite Upload

SpiceWorks 7.5 TFTP - Remote File Overwrite Upload + Credits: John Page AKA HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/SPICEWORKS-IMPROPER-ACCESS-CONTROL-FILE-OVERWRITE.txt + ISR: APPARITIONSEC Vendor: ================== www.spiceworks.com...

7.5CVSS0.06724EPSS
Exploits5
Packet Storm
Packet Storm
added 2017/04/05 12:0 a.m.53 views

Spiceworks 7.5 TFTP Improper Access Control File Overwrite / Upload

Credits: John Page AKA HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/SPICEWORKS-IMPROPER-ACCESS-CONTROL-FILE-OVERWRITE.txt + ISR: APPARITIONSEC Vendor: ================== www.spiceworks.com Product: ================= Spiceworks - 7.5 Provides...

0.7AI score0.06724EPSS
Exploits5
Exploit DB
Exploit DB
added 2017/04/05 12:0 a.m.50 views

SpiceWorks 7.5 TFTP - Remote File Overwrite / Upload

Credits: John Page AKA HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/SPICEWORKS-IMPROPER-ACCESS-CONTROL-FILE-OVERWRITE.txt + ISR: APPARITIONSEC Vendor: ================== www.spiceworks.com Product: ================= Spiceworks - 7.5 Provides...

9.8CVSS9.7AI score0.06724EPSS
Exploits5
Rows per page
Query Builder