Lucene search
+L

163 matches found

securityvulns
securityvulns
added 2011/07/06 12:0 a.m.46 views

Upload directory traversal in Novell ZenWorks Handheld Management 7.0.2

Luigi Auriemma Application: Novell ZenWorks Handheld Management http://www.novell.com/products/zenworks/handhelds/ Versions: = 7.0.2.61213 Platforms: Windows, Linux, NetWare Bug: upload directory traversal Exploitation: remote, versus server Date: 27 Jun 2011 found 25 Apr 2011 Author: Luigi...

7AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2011/02/15 12:0 a.m.6 views

Novell ZENworks Handheld Management ZfHIPCND.exe Buffer Overflow (CVE-2010-4299)

Novell ZENworks Handheld Management is part of the Novell ZENworks suite that allows administrators to remotely update, configure, and inventory handheld devices such as Palm, Windows CE, PocketPC, and RIM BlackBerry. A buffer overflow vulnerability has been reported in Novell ZENworks Handheld...

9.3CVSS7.6AI score0.08058EPSS
Exploits0
NVD
NVD
added 2011/02/02 1:0 a.m.17 views

CVE-2011-0742

Buffer overflow in ZfHIPCND.exe in Novell ZENworks Handheld Management 7.0 allows remote attackers to execute arbitrary code via a crafted IP Conduit packet to TCP port 2400...

10CVSS7.8AI score0.09467EPSS
Exploits0References10
Prion
Prion
added 2011/02/02 1:0 a.m.14 views

Buffer overflow

Buffer overflow in ZfHIPCND.exe in Novell ZENworks Handheld Management 7.0 allows remote attackers to execute arbitrary code via a crafted IP Conduit packet to TCP port 2400...

10CVSS8.4AI score0.09467EPSS
Exploits0References10Affected Software1
CVE
CVE
added 2011/02/02 12:0 a.m.49 views

CVE-2011-0742

CVE-2011-0742 describes a buffer overflow in ZfHIPCND.exe of Novell ZENworks Handheld Management 7.0. A crafted IP Conduit packet sent to TCP port 2400 allows remote code execution. The affected component is the ZENworks Handheld Management Access Point process (ZfHIPCND.exe); root cause is a buf...

10CVSS8.1AI score0.09467EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2011/02/02 12:0 a.m.24 views

CVE-2011-0742

Buffer overflow in ZfHIPCND.exe in Novell ZENworks Handheld Management 7.0 allows remote attackers to execute arbitrary code via a crafted IP Conduit packet to TCP port 2400...

7.8AI score0.09467EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2011/02/01 12:0 a.m.20 views

Novell ZENworks Handheld Management ZfHIPCND.exe Crafted TCP Request Remote Overflow

According to its build date, the version of the ZENworks Handheld Management Access Point process ZfHIPCND.exe on the remote host is affected by a buffer overflow vulnerability due to a failure to accommodate variable-sized data during initialization of a buffer. By default, this process listens ...

10CVSS6.5AI score0.09467EPSS
Exploits0References6
securityvulns
securityvulns
added 2011/01/31 12:0 a.m.35 views

TELUS Security Labs VR - Novell ZENworks Handheld Management ZfHIPCND.exe Buffer Overflow

Novell ZENworks Handheld Management ZfHIPCND.exe Buffer Overflow TSL ID: FSC20110125-06 1. Affected Software Novell ZENworks Handheld Management 7.0 Reference: http://www.novell.com/products/zenworks/handhelds 2. Vulnerability Summary A buffer overflow vulnerability exists in Novell ZENworks...

0.6AI score
Exploits0
securityvulns
securityvulns
added 2011/01/31 12:0 a.m.20 views

Novell ZENworks Handheld Management buffer overflow

Buffer overflow on TCP/2400 traffic parsing...

3.9AI score
Exploits0References1Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2011/01/26 12:0 a.m.26 views

Novell Zenworks Handheld Management ZfHIPCnd.exe Opcode 2 Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell Zenworks Handheld Management. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Access Point process ZfHIPCnd.exe which listens by default on...

10CVSS8.4AI score
Exploits0References2
OpenVAS
OpenVAS
added 2010/11/30 12:0 a.m.33 views

Novell ZENworks Handheld Management 'ZfHIPCND.exe' Buffer Overflow Vulnerability

This host is installed with Novell ZENworks Handheld Management and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbnovellzhmbofvuln.nasl 5323 2017-02-17 08:49:23Z teissa $ Novell ZENworks Handheld Management 'ZfHIPCND.exe' Buffer Overflow Vulnerability Authors: Soora...

9.3CVSS0.7AI score0.08058EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2010/11/30 12:0 a.m.23 views

Novell ZENworks Handheld Management 'ZfHIPCND.exe' Buffer Overflow Vulnerability

Novell ZENworks Handheld Management is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.1AI score0.08058EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2010/11/30 12:0 a.m.5 views

Novell ZENworks Handheld Management Version Detection

Detects the installed version of Novell ZENworks Handheld Management on Windows. The script logs in via smb, searches for ZENworks Handheld Management Server in the registry and gets the version from the registry. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted...

7AI score
Exploits0
Prion
Prion
added 2010/11/22 12:54 p.m.15 views

Heap overflow

Heap-based buffer overflow in ZfHIPCND.exe in Novell Zenworks 7 Handheld Management ZHM allows remote attackers to execute arbitrary code via a crafted request to TCP port 2400...

9.3CVSS8.6AI score0.08058EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2010/11/22 12:0 a.m.24 views

Novell ZENworks Handheld Management ZfHIPCND.exe Unspecified Buffer Overflow

A vulnerability exists in the server ZfHIPCND.exe, which handles the data received on TCP port 2400. An attacker can overflow a buffer on a heap belonging to the server and possibly execute arbitrary code with SYSTEM privileges. Authentication is not required to exploit this vulnerability. C...

9.3CVSS6.5AI score0.08058EPSS
Exploits0References3
CVE
CVE
added 2010/11/20 8:0 p.m.56 views

CVE-2010-4299

The CVE-2010-4299 vulnerability affects Novell ZENworks Handheld Management: the ZfHIPCND.exe service is prone to a heap-based buffer overflow triggered by crafted TCP port 2400 requests, enabling remote code execution. Exploitation details (e.g., specific offsets, affected versions, or whether e...

9.3CVSS8.2AI score0.08058EPSS
Exploits0References5Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2010/11/07 12:0 a.m.26 views

Novell ZENworks Handheld Management ZfHIPCND.exe Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell ZENworks Handheld Management. Authentication is not required to exploit this vulnerability. The specific flaw exists within module ZfHIPCND.exe. This process is responsible for handling the...

10CVSS8AI score
Exploits0References2
securityvulns
securityvulns
added 2009/07/10 12:0 a.m.19 views

HTC handheld PCs directory traversal

Bluetoth stack OBEX FTP directory traversal...

1.9AI score
Exploits0References1
ThreatPost
ThreatPost
added 2009/04/07 6:15 p.m.7 views

Mobile viruses hampered by lack of dominant mobile OS

Malware that attacks mobile phones and other handheld devices has been the Next Big Threat for most of the last decade. And much like the Year of PKI, it’s never really materialized. Security experts have postulated that this is mainly because there’s not enough valuable data on these devices to...

0.3AI score
Exploits0References2
CVE
CVE
added 2006/04/07 10:0 a.m.41 views

CVE-2005-4771

The CVE-2005-4771 entry concerns the Trust Digital Trusted Mobility Suite’s Trusted Mobility Agent PC Policy. A cancel button at the domain-authentication prompt bypasses policy checks, allowing local users to sync a handheld (PDA) device despite a policy setting that sync is unauthorized. The av...

4.6CVSS6.6AI score0.0032EPSS
Exploits0References2
Rows per page
Query Builder