30 matches found
EUVD-2011-2639
Malware in sbrugna...
EUVD-2011-2638
Malware in sbrugna...
Novell ZENworks Handheld Management Upload Directory Traversal
A directory traversal vulnerability has been reported in Novell ZENworks Handheld Management...
Novell ZENworks Handheld Management File Upload Directory Traversal (CVE-2011-4027)
A directory traversal vulnerability has been reported in Novell ZENworks Handheld Management. The vulnerability is due to insufficient sanitization while handling malformed incoming messages. A remote attacker may leverage this flaw by sending a specially crafted request to an affected server...
Novell ZENworks Handheld Management ZfHSrvr.exe Multiple Remote Code Execution Vulnerabilities
The ZENworks Handheld Management Server process ZfHSrvr.exe contains multiple unspecified remote code execution vulnerabilities that allow an attacker to run arbitrary code on a victim within the context of the 'ZENworks Handheld Management Server' process. C Tenable Network Security, Inc...
Novell ZENworks Handheld Management Common.dll messageID Request Field Parsing Traversal Arbitrary File Creation
The version of the 'Common.dll' library included with the ZENworks Handheld Management install on the remote Windows host is affected by a directory traversal vulnerability because it fails to sanitize user input to the 'messageID' field in requests of directory traversal sequences. An...
CVE-2011-2655
Unspecified vulnerability in ZfHSrvr.exe in Novell ZENworks Handheld Management ZHM 7 allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-2656...
Code injection
Unspecified vulnerability in ZfHSrvr.exe in Novell ZENworks Handheld Management ZHM 7 allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-2656...
Code injection
Unspecified vulnerability in ZfHSrvr.exe in Novell ZENworks Handheld Management ZHM 7 allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-2655...
CVE-2011-2656
The connected Nessus entry for NOVELL_ZENWORKS_HANDHELD_MANAGEMENT_ZFHSRV_CODE_EXECUTION.NASL confirms that the ZENworks Handheld Management Server component ZfHSrvr.exe contains multiple remote code execution vulnerabilities that allow an attacker to run arbitrary code in the context of the ZfHS...
CVE-2011-2656
Unspecified vulnerability in ZfHSrvr.exe in Novell ZENworks Handheld Management ZHM 7 allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-2655...
CVE-2011-2655
The connected sources (e.g., Nessus) indicate that CVE-2011-2655 involves ZENworks Handheld Management (ZHM) 7, specifically the ZfHSrvr.exe server process, with multiple remote code execution vulnerabilities that allow arbitrary code execution within the ZfHSrvr.exe context. The exact attack vec...
Upload directory traversal in Novell ZenWorks Handheld Management 7.0.2
Luigi Auriemma Application: Novell ZenWorks Handheld Management http://www.novell.com/products/zenworks/handhelds/ Versions: = 7.0.2.61213 Platforms: Windows, Linux, NetWare Bug: upload directory traversal Exploitation: remote, versus server Date: 27 Jun 2011 found 25 Apr 2011 Author: Luigi...
Novell ZenWorks Handheld Management directory traversal
Directory traversal on TCP/2398 request processing...
Novell ZENworks Handheld Management ZfHIPCND.exe Buffer Overflow (CVE-2010-4299)
Novell ZENworks Handheld Management is part of the Novell ZENworks suite that allows administrators to remotely update, configure, and inventory handheld devices such as Palm, Windows CE, PocketPC, and RIM BlackBerry. A buffer overflow vulnerability has been reported in Novell ZENworks Handheld...
CVE-2011-0742
Buffer overflow in ZfHIPCND.exe in Novell ZENworks Handheld Management 7.0 allows remote attackers to execute arbitrary code via a crafted IP Conduit packet to TCP port 2400...
Buffer overflow
Buffer overflow in ZfHIPCND.exe in Novell ZENworks Handheld Management 7.0 allows remote attackers to execute arbitrary code via a crafted IP Conduit packet to TCP port 2400...
CVE-2011-0742
CVE-2011-0742 describes a buffer overflow in ZfHIPCND.exe of Novell ZENworks Handheld Management 7.0. A crafted IP Conduit packet sent to TCP port 2400 allows remote code execution. The affected component is the ZENworks Handheld Management Access Point process (ZfHIPCND.exe); root cause is a buf...
CVE-2011-0742
Buffer overflow in ZfHIPCND.exe in Novell ZENworks Handheld Management 7.0 allows remote attackers to execute arbitrary code via a crafted IP Conduit packet to TCP port 2400...
Novell ZENworks Handheld Management ZfHIPCND.exe Crafted TCP Request Remote Overflow
According to its build date, the version of the ZENworks Handheld Management Access Point process ZfHIPCND.exe on the remote host is affected by a buffer overflow vulnerability due to a failure to accommodate variable-sized data during initialization of a buffer. By default, this process listens ...