McAfee VirusScan Enterprise 8.8 < 8.8 Patch 1 DoS

The remote Windows host has a version of McAfee VirusScan Enterprise VSE 8.8 prior to 8.8 Patch 1. It is, therefore, affected by a denial of service vulnerability due to a flaw in Self Protection. Malicious software can change the NTFS folder permissions on VSE folders and disable the software. C...

pChart 2.1.3 Cross Site Scripting / Directory Traversal

Exploit Title: pChart 2.1.3 Directory Traversal and Reflected XSS Date: 2014-01-24 Exploit Author: Balazs Makany Vendor Homepage: www.pchart.net Software Link: www.pchart.net/download Google Dork: intitle:"pChart 2.x - examples" intext:"2.1.3" Version: 2.1.3 Tested on: N/A Web Application. Tested...

CVE-2013-2152

Unquoted Windows search path vulnerability in the SPICE service, as used in Red Hat Enterprise Virtualization RHEV 3.2, allows local users to gain privileges via a crafted application in an unspecified folder...

eFront LMS 3.6.14 File Upload / Path Disclosure

============================================================= \ \ / / | | / \ / | | \ \ V / | | | | | | | | | / \ | ' \ | | | | | | | | | | | | '| | / / . \ | | | | | | || | | | | | | | | | // \ | ./ || / || || |/ || | | || blackpentesters.blogspot.com...

Synology DSM 4.3-3810 - Directory Traversal

Exploit for cgi platform in category web applications Title: Synology DSM multiple directory traversal Version affected: = 4.3-3810 Vendor: Synology Discovered by: Andrea Fabrizi Email: email protected Web: http://www.andreafabrizi.it Twitter: @andreaf83 Status: patched CVE: 2013-6987 I'm again...

Feetan Inc WireShare 1.9.1 iOS - Persistent

Document Title: =============== Feetan Inc WireShare v1.9.1 iOS - Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1157 Release Date: ============= 2013-12-05 Vulnerability Laboratory ID VL-ID: ====================================...

Feetan Inc WireShare v1.9.1 iOS - Persistent Vulnerability

Document Title: =============== Feetan Inc WireShare v1.9.1 iOS - Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1157 Release Date: ============= 2013-12-05 Vulnerability Laboratory ID VL-ID: ====================================...

Feetan Inc WireShare v1.9.1 iOS - Persistent Vulnerability

Document Title: =============== Feetan Inc WireShare v1.9.1 iOS - Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1157 Release Date: ============= 2013-12-05 Vulnerability Laboratory ID VL-ID: ====================================...

How to Collect Logs for Veeam Backup & Replication

Purpose This article documents how to collect logs from Veeam Backup & Replication and additional information to include when submitting a Veeam Support case for technical assistance. Additional Logging Veeam Backup & Replication interoperates with other Veeam products. Please refer to the...

[SECURITY] Fedora 20 Update: roundcubemail-0.9.5-1.fc20

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

http-iis-short-name-brute NSE Script

Attempts to brute force the 8.3 filenames commonly known as short names of files and directories in the root folder of vulnerable IIS servers. This script is an implementation of the PoC "iis shortname scanner". The script uses ,? and to bruteforce the short name of files present in the IIS...

Debian Security Advisory DSA 2787-1 (roundcube - design error)

It was discovered that roundcube, a skinnable AJAX based webmail solution for IMAP servers, does not properly sanitize the session parameter in steps/utils/savepref.inc during saving preferences. The vulnerability can be exploited to overwrite configuration settings and subsequently allowing rand...

DEDECMS website management system template execution vulnerability-vulnerability warning-the black bar safety net

DEDECMS website management system template execution vulnerability One not careful, your server will be hacked, such as database password is too simple, the server password is too simple, or CMS system vulnerabilities. The following is a DEDE of the template execution vulnerability. Vulnerability...

CVE-2013-6079

Buffer overflow in MostGear Soft Easy LAN Folder Share 3.2.0.100 allows local users to cause a denial of service application crash and possibly execute arbitrary code via a long string in the 1 registration code field in the activate license window or the 2...

Buffer overflow

Buffer overflow in MostGear Soft Easy LAN Folder Share 3.2.0.100 allows local users to cause a denial of service application crash and possibly execute arbitrary code via a long string in the 1 registration code field in the activate license window or the 2...

CVE-2013-6079

Buffer overflow in MostGear Soft Easy LAN Folder Share 3.2.0.100 allows local users to cause a denial of service application crash and possibly execute arbitrary code via a long string in the 1 registration code field in the activate license window or the 2...

CVE-2013-6079

The CVE-2013-6079 entry concerns MostGear Soft Easy LAN Folder Share 3.2.0.100, where a buffer overflow in the application allows local users to cause a denial of service (crash) and potentially execute arbitrary code. The issue can be triggered by a long string in two places: (1) the registratio...

CVE-2013-2231

Unquoted Windows search path vulnerability in the QEMU Guest Agent service for Red Hat Enterprise Linux Desktop 6, HPC Node 6, Server 6, Workstation 6, Desktop Supplementary 6, Server Supplementary 6, Supplementary AUS 6.4, Supplementary EUS 6.4.z, and Workstation Supplementary 6, when installing...

Fedora Update for roundcubemail FEDORA-2013-15223

Check for the Version of roundcubemail OpenVAS Vulnerability Test Fedora Update for roundcubemail FEDORA-2013-15223 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

WordPress WPtouch Plugin Path Disclosure Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescription...