80 matches found
EUVD-2011-2710
Malware in sbrugna...
EUVD-2015-0551
Malware in sbrugna...
EUVD-2012-0441
Malware in sbrugna...
EMC AutoStart ftagent Opcode 85 Subcode 33 SQL Injection (CVE-2015-0538)
A remote SQL injection vulnerability exists in EMC AutoStart. The vulnerability is due to insufficient validation of remotely supplied data within the ftagent component. A remote unauthenticated attacker can leverage this vulnerability by sending malicious requests to the ftagent process...
EMC AutoStart ftagent Opcode 83 Subcode 22 SQL Injection (CVE-2015-0538)
A remote SQL injection vulnerability exists in EMC AutoStart. The vulnerability is due to insufficient validation of remotely supplied data within the ftagent component. A remote unauthenticated attacker can leverage this vulnerability by sending malicious requests to the ftagent process...
EMC AutoStart ftagent Remote Command Execution (CVE-2015-0538)
A remote command execution vulnerability exists in EMC AutoStart. The vulnerability is due to insecure communication between the ftagent processes on nodes of an AutoStart cluster. A remote unauthenticated attacker can leverage this vulnerability by sending malicious requests to the ftagent proce...
EMC AutoStart < 5.5.0 HF4 ftAgent Remote Code Execution
The remote host is running a version of the EMC AutoStart ftAgent that is affected by a remote code execution vulnerability due to a failure to communicate securely between nodes. An unauthenticated, remote attacker can exploit this, via specially crafted packets, to execute arbitrary commands on...
CVE-2015-0538
ftagent.exe in EMC AutoStart 5.4.x and 5.5.x before 5.5.0.508 HF4 allows remote attackers to execute arbitrary commands via crafted packets...
Hardcoded credentials
ftagent.exe in EMC AutoStart 5.4.x and 5.5.x before 5.5.0.508 HF4 allows remote attackers to execute arbitrary commands via crafted packets...
CVE-2015-0538
EMC AutoStart ftAgent (ftagent.exe) in 5.4.x and 5.5.x prior to 5.5.0.508 HF4 is affected. The vulnerability enables remote code execution by sending crafted packets to the ftAgent process (notably handling opcode/subcode on TCP port 8045 per ZDI advisories). Root cause is insufficient input vali...
CVE-2015-0538
ftagent.exe in EMC AutoStart 5.4.x and 5.5.x before 5.5.0.508 HF4 allows remote attackers to execute arbitrary commands via crafted packets...
EMC AutoStart ftAgent Opcode 20 Subcode 2219 Command Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC AutoStart. Authentication is required to exploit this vulnerability, but can be easily bypassed. The specific flaw exists within ftAgent.exe which listens on TCP port 8045, when handling opcode...
EMC AutoStart ftAgent Opcode 83 Subcode 22 SQL Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC AutoStart. Authentication is required to exploit this vulnerability, but can be easily bypassed. The specific flaw exists within ftAgent.exe which listens on TCP port 8045, when handling opcode...
EMC AutoStart ftAgent Opcode 20 Subcode 2060 Command Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC AutoStart. Authentication is required to exploit this vulnerability, but can be easily bypassed. The specific flaw exists within ftAgent.exe which listens on TCP port 8045, when handling opcode...
EMC AutoStart ftAgent Opcode 85 Subcode 33 SQL Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC AutoStart. Authentication is required to exploit this vulnerability, but can be easily bypassed. The specific flaw exists within ftAgent.exe which listens on TCP port 8045, when handling opcode...
EMC AutoStart ftAgent Multiple Opcode SQL Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC AutoStart. Authentication is required to exploit this vulnerability, but can be easily bypassed. The specific flaw exists within ftAgent.exe which listens on TCP port 8045, when handling numero...
EMC Autostart data injection
Commands injection is possible...
ESA-2015-084: EMC AutoStart Packet Injection Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-084: EMC AutoStart Packet Injection Vulnerability EMC Identifier: ESA-2015-084 CVE Identifier: CVE-2015-0538 Severity Rating: CVSS v2 Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C Affected products: • EMC AutoStart versions 5.4.3 and prior all...
EMC AutoStart is vulnerable to remote code execution via specially crafted packets
Overview EMC AutoStart, version 5.5.0 and earlier, is vulnerable to remote command execution via specially crafted packets. Description EMC AutoStart is an enterprise software application developed to help networks and service maintain a high level of availability. AutoStart can manage clusters o...
EMC AutoStart ftAgent.exe Multiple Integer Overflow Vulnerabilities (CVE-2012-0409)
Multiple buffer overflow vulnerabilities have been reported in EMC AutoStart...