5 matches found
EUVD-2008-1407
Malware in sbrugna...
The vulnerability of the GPU-based terminal emulator protocol implementation, related to the lack of measures taken to clean data at the control level, allows a perpetrator to execute arbitrary code.
The vulnerability of the GPU-based terminal emulator protocol implementation is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending specially crafted requests within the filename variable...
CVE-2017-16597
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of WRQ requests. When parsing the...
Schneider Electric Wonderware InTouch Access Anywhere Server Buffer Overflow Vulnerability
Schneider Electric provides total solutions for the energy and infrastructure, industrial, data center and network, building and residential markets in more than 100 countries. A buffer overflow vulnerability in Schneider Electric Wonderware InTouch Access Anywhere Server's handling of non-existe...
Microsoft IIS 3.0/4.0/5.0 - PWS Escaped Characters Decoding Command Execution (3)
source: https://www.securityfocus.com/bid/2708/info Due to a flaw in the handling of CGI filename program requests, remote users can execute arbitrary commands on an IIS host. When IIS receives a CGI filename request, it automatically performs two actions before completing the request: 1. IIS...