434 matches found
HP-UX Security Patch : PHSS_20444
HP DCE/9000 1.7 Runtime cumulative patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26582; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate",...
HP-UX Security Patch : PHSS_35466
HP DCE 1.9 client cumulative patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26864; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate", value:"2021/01/11...
HP-UX PHSS_30771 : HP-UX Running DCE, Remote Denial of Service (DoS) (HPSBUX00299 SSRT3660 rev.4)
s700800 11.23 HP DCE 1.9 client cumulative patch : Potential security vulnerability in DCE. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHSS30771. The text itself is copyright C Hewlett-Packard Development...
Invalid Bind ACK Messages
DCE/RPC stands for Distributed Computing Environment / Remote Procedure Calls. It is a Remote Procedure Call system that allows software to work across multiple computers, as if it were all working on the same computer. This system allows programmers to write distributed software without having t...
Non Standard MS-RPC Message Types
DCE/RPC stands for Distributed Computing Environment / Remote Procedure Calls. It is a Remote Procedure Call system that allows software to work across multiple computers, as if it were all working on the same computer. This system allows programmers to write distributed software without having t...
Bind Acks with Invalid Return Ports
DCE/RPC stands for Distributed Computing Environment / Remote Procedure Calls. It is a Remote Procedure Call system that allows software to work across multiple computers, as if it were all working on the same computer. This system allows programmers to write distributed software without having t...
Stateful Inspection of Alter Context Messages
DCE/RPC stands for Distributed Computing Environment / Remote Procedure Calls. It is a Remote Procedure Call system that allows software to work across multiple computers, as if it were all working on the same computer. This system allows programmers to write distributed software without having t...
Snort DCE/RPC preprocessor buffer overflow
Added: 07/09/2007 CVE: CVE-2006-5276 BID: 22616 OSVDB: 32094 Background Snort is an open-source intrusion detection system. It includes a DCE/RPC preprocessor, which reassembles DCE/RPC traffic before it is passed to the intrusion detection engine. Problem A buffer overflow vulnerability in the...
Snort DCE/RPC preprocessor buffer overflow
Added: 07/09/2007 CVE: CVE-2006-5276 BID: 22616 OSVDB: 32094 Background Snort is an open-source intrusion detection system. It includes a DCE/RPC preprocessor, which reassembles DCE/RPC traffic before it is passed to the intrusion detection engine. Problem A buffer overflow vulnerability in the...
Snort DCE/RPC preprocessor buffer overflow
Added: 07/09/2007 CVE: CVE-2006-5276 BID: 22616 OSVDB: 32094 Background Snort is an open-source intrusion detection system. It includes a DCE/RPC preprocessor, which reassembles DCE/RPC traffic before it is passed to the intrusion detection engine. Problem A buffer overflow vulnerability in the...
Snort DCE/RPC preprocessor buffer overflow
Added: 07/09/2007 CVE: CVE-2006-5276 BID: 22616 OSVDB: 32094 Background Snort is an open-source intrusion detection system. It includes a DCE/RPC preprocessor, which reassembles DCE/RPC traffic before it is passed to the intrusion detection engine. Problem A buffer overflow vulnerability in the...
Trend Micro ServerProtect EarthAgent.exe远程栈缓冲区溢出漏洞
Trend ServerProtect是一款企业级反病毒程序。 Trend ServerProtect的DCE/RPC接口实现上存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制服务器。 ServerProtect默认绑定在TCP 3628端口上的EarthAgent.exe守护程序通过TmRpcSrv.dll暴露以下DCE/RPC接口: / opcode: 0x00, address: 0x65741030 / errorstatust sub65741030 in handlet arg1, in long arg2, insizeisarg4 byte arg3, in long...
ZDI-07-025: Trend Micro ServerProtect AgRpcCln.dll Stack Overflow Vulnerability
ZDI-07-025: Trend Micro ServerProtect AgRpcCln.dll Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-025.html May 7, 2007 -- CVE ID: CVE-2007-2508 -- Affected Vendor: Trend Micro -- Affected Products: ServerProtect v5.58 -- TippingPointTM IPS Customer Protection:...
Trend Micro ServerProtect AgRpcCln.dll Stack Overflow Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Trend Micro ServerProtect. Authentication is not required to exploit this vulnerability. The specific flaw exists in the SpntSvc.exe daemon, bound by default on TCP port 5168 and exposing the following...
Trend Micro ServerProtect EarthAgent Stack Overflow Vulnerability
These vulnerabilities allow attackers to execute arbitrary code on vulnerable installations of Trend Micro ServerProtect. Authentication is not required to exploit these vulnerabilities. The specific flaw exists in the EarthAgent.exe daemon, bound by default on TCP port 3628 and exposing the...
Snort 2.6.1 DCE/RPC Preprocessor Remote Buffer Overflow Exploit (linux)
No description provided by source. !/usr/bin/python Remote exploit for Snort DCE/RPC preprocessor vulnerability as described in CVE-2006-5276. The exploit binds a shell to TCP port 4444 and connects to it. This code was tested against snort-2.6.1 running on Red Hat Linux 8 Author shall bear no...
Snort 2.6.1 DCE/RPC Preprocessor Remote Buffer Overflow Exploit (linux)
Exploit for linux platform in category remote exploits ======================================================================= Snort 2.6.1 DCE/RPC Preprocessor Remote Buffer Overflow Exploit linux ======================================================================= !/usr/bin/python Remote...
Snort 2.6.1 (Linux) - DCE/RPC Preprocessor Remote Buffer Overflow
!/usr/bin/python Remote exploit for Snort DCE/RPC preprocessor vulnerability as described in CVE-2006-5276. The exploit binds a shell to TCP port 4444 and connects to it. This code was tested against snort-2.6.1 running on Red Hat Linux 8 Author shall bear no responsibility for any screw ups caus...
Preemptive Protection against Sourcefire Intrusion Sensor and Snort DCE/RPC Preprocessor Buffer Overflow Vulnerability
A buffer overflow vulnerability has been identified in Sourcefire Intrusion Sensor and in Snort DCE/RPC preprocessor. Sourcefire Snort is an open-source network intrusion detection system. Snort DCE/RPC preprocessor is a plug-in that reassembles fragmented SMB and DCE/RPC packets. A remote attack...
MS Windows DCE-RPC svcctl ChangeServiceConfig2A() Memory Corruption
No description provided by source. !/usr/bin/python MS Windows DCE-RPC svcctl ChangeServiceConfig2A 0day Memory Corruption PoC Exploit Bug discovered by Krystian Kloskowski h07 Tested on Windows 2000 SP4 Polish all patches Requires.. - Impacket : http://oss.coresecurity.com/projects/impacket.html...