CVE-2021-24122

When serving resources from a network location using the NTFS file system, Apache Tomcat versions 10.0.0-M1 to 10.0.0-M9, 9.0.0.M1 to 9.0.39, 8.5.0 to 8.5.59 and 7.0.0 to 7.0.106 were susceptible to JSP source code disclosure in some configurations. The root cause was the unexpected behaviour of...

Design/Logic Flaw

When serving resources from a network location using the NTFS file system, Apache Tomcat versions 10.0.0-M1 to 10.0.0-M9, 9.0.0.M1 to 9.0.39, 8.5.0 to 8.5.59 and 7.0.0 to 7.0.106 were susceptible to JSP source code disclosure in some configurations. The root cause was the unexpected behaviour of...

HP Data Protector 6.1 EXEC_CMD Command Execution

This module exploits HP Data Protector's omniinet process, specifically against a Windows setup. When an EXECCMD packet is sent, omniinet.exe will attempt to look for that user-supplied filename with kernel32!FindFirstFileW. If the file is found, the process will then go ahead execute it with...

Microsoft MFC库CFileFind::FindFile堆溢出漏洞

BUGTRAQ ID: 25697 CVECAN ID: CVE-2007-4916 Microsoft Windows是微软发布的非常流行的操作系统。 Windows系统中所提供的MFC42和MFC71库的CFileFind类在处理FindFile函数参数时存在堆溢出漏洞，本地攻击者可能利用此漏洞提升自己的权限。 MFC42|71.dll@CFileFind::FindFilechar const ,unsigned long .text:73D6CD3F mov edi, edi .text:73D6CD41 push ebp .text:73D6CD42 push esi ;...