Lucene search
+L

142 matches found

NVD
NVD
added 2012/01/04 3:55 a.m.22 views

CVE-2011-3337

eEye Audit ID 2499 in eEye Digital Security Audits 2406 through 2423 for eEye Retina Network Security Scanner on HP-UX, IRIX, and Solaris allows local users to gain privileges via a Trojan horse gauntlet program in an arbitrary directory under /usr/local/...

6.9CVSS6.7AI score0.00313EPSS
Exploits1References2
Prion
Prion
added 2012/01/04 3:55 a.m.14 views

Code injection

eEye Audit ID 2499 in eEye Digital Security Audits 2406 through 2423 for eEye Retina Network Security Scanner on HP-UX, IRIX, and Solaris allows local users to gain privileges via a Trojan horse gauntlet program in an arbitrary directory under /usr/local/...

6.9CVSS7.2AI score0.00313EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2012/01/04 2:0 a.m.28 views

CVE-2011-3337

eEye Audit ID 2499 in eEye Digital Security Audits 2406 through 2423 for eEye Retina Network Security Scanner on HP-UX, IRIX, and Solaris allows local users to gain privileges via a Trojan horse gauntlet program in an arbitrary directory under /usr/local/...

6.7AI score0.00313EPSS
Exploits1References2
CVE
CVE
added 2012/01/04 2:0 a.m.46 views

CVE-2011-3337

CVE-2011-3337 affects eEye Retina Network Security Scanner (HP-UX, IRIX, Solaris). An audit script (Audit ID 2499) can execute arbitrary code via a Trojan gauntlet placed under /usr/local, enabling local privilege escalation to the same privileges as the Retina scanner. The issue stems from the a...

6.9CVSS6.9AI score0.00313EPSS
Exploits1References2Affected Software2
seebug.org
seebug.org
added 2011/11/10 12:0 a.m.29 views

eEye Retina Audit ID 2499权限提升漏洞

CVE ID: CVE-2011-3337 eEye Retina Network Security Scanner可针对目标系统执行多种审查,进行安全漏洞评估测试。 eEye Retina在实现上存在安全漏洞,可被恶意本地用户利用获取提升的权限。 此漏洞源于Audit ID 2499 "Gauntlet Firewall For UNIX Buffer Overflow"在"/usr/local"文件夹中执行特定文件,可通过在 "/usr/local"文件夹中放置恶意文件执行任意代码。 eEye Retina Network Security Scanner 5.x 厂商补丁: eEy...

6.9CVSS6.6AI score0.00313EPSS
Exploits1
CERT
CERT
added 2011/11/08 12:0 a.m.24 views

eEye Retina audit script could execute untrusted programs as root

Overview eEye Retina audit scripts have the capability to run remote shell scripts in order to determine vulnerable applications. One audit script in particular audit ID 2499 uses find1 and execute -exec when assessing a vulnerability within Gauntlet Firewall. An attacker who can write an...

6.9CVSS7.2AI score0.00313EPSS
Exploits1References3
Exploit DB
Exploit DB
added 2010/07/25 12:0 a.m.76 views

Microsoft Windows - ASN.1 Library Bitstring Heap Overflow (MS04-007) (Metasploit)

$Id: ms04007killbill.rb 9929 2010-07-25 21:37:54Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...

7.5CVSS7AI score0.84008EPSS
Exploits4
ThreatPost
ThreatPost
added 2010/07/13 8:1 p.m.5 views

Q&A: Marc Maiffret of eEye

Marc Maiffret, a security researcher known for his controversial opinions on software security and his efforts to get Microsoft specifically to improve the security of its products, is returning to eEye Digital Security, the vulnerability management company he helped found more than a decade ago...

7AI score
Exploits0References1
Exploit DB
Exploit DB
added 2010/07/03 12:0 a.m.167 views

Microsoft LSASS Service - DsRolerUpgradeDownlevelServer Overflow (MS04-011) (Metasploit)

$Id: ms04011lsass.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

7.5CVSS7AI score0.8615EPSS
Exploits8
Prion
Prion
added 2009/11/04 5:30 p.m.23 views

Buffer overflow

Buffer overflow in eEye Retina WiFi Scanner 1.0.8.68, as used in Retina Network Security Scanner 5.10.14, allows user-assisted remote attackers to cause a denial of service application crash or execute arbitrary code via a .rws file with a long RWS010 entry...

9.3CVSS8.5AI score0.11635EPSS
Exploits1References8Affected Software2
NVD
NVD
added 2009/11/04 5:30 p.m.29 views

CVE-2009-3859

Buffer overflow in eEye Retina WiFi Scanner 1.0.8.68, as used in Retina Network Security Scanner 5.10.14, allows user-assisted remote attackers to cause a denial of service application crash or execute arbitrary code via a .rws file with a long RWS010 entry...

9.3CVSS7.8AI score0.11635EPSS
Exploits1References8
Cvelist
Cvelist
added 2009/11/04 5:0 p.m.23 views

CVE-2009-3859

Buffer overflow in eEye Retina WiFi Scanner 1.0.8.68, as used in Retina Network Security Scanner 5.10.14, allows user-assisted remote attackers to cause a denial of service application crash or execute arbitrary code via a .rws file with a long RWS010 entry...

7.8AI score0.11635EPSS
Exploits1References8
CVE
CVE
added 2009/11/04 5:0 p.m.49 views

CVE-2009-3859

CVE-2009-3859 is a buffer overflow in eEye Retina WiFi Scanner 1.0.8.68 (used in Retina Network Security Scanner 5.10.14) triggered by processing a specially crafted .rws file with a long RWS010 entry. The issue can cause a denial of service (application crash) and, per sources, may allow arbitra...

9.3CVSS7.8AI score0.11635EPSS
Exploits1References8Affected Software2
Kaspersky
Kaspersky
added 2009/11/04 12:0 a.m.30 views

KLA10417 ACE vulnerability in eEye Retina Network Security

A buffer overflow was found in eEye Retina Network Security. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed RWS file. Original advisories - Exploitation Public exploits...

9.3CVSS8.1AI score0.11635EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2009/07/16 12:0 a.m.47 views

eEye Retina Wireless Scanner (Standalone) Detection

Retina Wireless Scanner is installed on the remote host. This program is currently installed as a standalone application. Please note it is no longer distributed in this manner, and is now included with Retina Network Security Scanner. C Tenable Network Security, Inc. include"compat.inc"; if...

5.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2009/07/16 12:0 a.m.37 views

eEye Retina Wireless Scanner .rws Handling Buffer Overflow

The version of Retina Wireless Scanner installed on the remote host has a local buffer overflow vulnerability. A remote attacker could exploit this issue by tricking a user into opening a malformed .rws file. This could cause the program to crash or possibly result in the execution of arbitrary...

9.3CVSS6.4AI score0.11635EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2009/07/16 12:0 a.m.38 views

eEye Retina Network Security Scanner Detection

Retina Network Security Scanner is installed on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid39807; scriptversion"1.13"; scriptsetattributeattribute:"pluginmodificationdate", value:"2023/02/06"; scriptnameenglish:"eEye Retina Network Security Scann...

7.1AI score
Exploits0References1
seebug.org
seebug.org
added 2009/07/13 12:0 a.m.21 views

eEye Retina WiFi Scanner '.rws'文件缓冲区溢出漏洞

Bugraq ID: 35624 eEye Retina WiFi Scanner是一款eEye公司开发的无线检测工具。 eEye Retina WiFi Scanner不正确解析'.rws'文件,远程攻击者可以利用漏洞以应用程序权限执行任意指令。 构建包含超长"RWS010"条目的".rws"文件,诱使用户打开,可导致在.data段触发缓冲区溢出,可能导致以应用程序权限执行任意指令。 eEye Digital Security Retina WiFi Scanner 1.0.8 68 目前没有解决方案提供: http://www.eeye.com/ !/usr/bin/python...

6.9AI score
Exploits0
0day.today
0day.today
added 2009/07/10 12:0 a.m.20 views

eEye Retina WiFi Security Scanner 1.0 (.rws Parsing) Buffer Overflow PoC

Exploit for unknown platform in category dos / poc ======================================================================== eEye Retina WiFi Security Scanner 1.0 .rws Parsing Buffer Overflow PoC ======================================================================== !/usr/bin/python Title: Retin...

7AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2009/07/10 12:0 a.m.42 views

eEye Retina WiFi Security Scanner 1.0 (.rws Parsing) Buffer Overflow PoC

Summary Retina WiFi Scanner is a tool to be used to detect IEEE 802.11 WiFi based devices. Note: The tool is implemented as part of the eEye's Retina Network Security Scanner package. Description A vulnerability has been identified in eEye Retina WiFi Scanner, which could be exploited by attacker...

9.3CVSS6.4AI score0.11635EPSS
Exploits1
Rows per page
Query Builder