3 matches found
ManageEngine ADAudit Plus Authenticated File Write RCE
This module exploits security issues in ManageEngine ADAudit Plus prior to 7006 that allow authenticated users to execute arbitrary code by creating a custom alert profile and leveraging its custom alert script component. The module first runs a few checks to test the provided credentials, retrie...
CVE-2017-7588
On certain Brother devices, authorization is mishandled by including a valid AuthCookie cookie in the HTTP response to a failed login attempt. Affected models are: MFC-J6973CDW MFC-J4420DW MFC-8710DW MFC-J4620DW MFC-L8850CDW MFC-J3720 MFC-J6520DW MFC-L2740DW MFC-J5910DW MFC-J6920DW MFC-L2700DW...
CVE-2007-1681
CVE-2007-1681 relates to a format-string vulnerability in Sun Java Web Console (Lockhart) specifically in libwebconsole_services.so, affecting Sun Java Web Console versions 2.2.2–2.2.5. The issue allows remote attackers to crash the application, potentially disclose sensitive information, and pos...