13 matches found
EUVD-2012-4524
Malware in sbrugna...
CVE-2013-3693
The BlackBerry Universal Device Service in BlackBerry Enterprise Service BES 10.0 through 10.1.2 does not properly restrict access to the JBoss Remote Method Invocation RMI interface, which allows remote attackers to upload and execute arbitrary packages via a request to port 1098...
[security bulletin] HPSBGN03308 rev.1 - HP TippingPoint Security Management System (SMS) and TippingPoint Virtual Security Management System (vSMS), Remote Code Execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04626974 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04626974 Version: 1 HPSBGN03308 rev....
CVE-2015-2117
HP TippingPoint Security Management System SMS and TippingPoint Virtual Security Management System vSMS before 4.1 patch 3 and 4.2 before patch 1 do not require authentication for JBoss RMI requests, which allows remote attackers to execute arbitrary code by 1 uploading this code within an archiv...
Authentication flaw
HP TippingPoint Security Management System SMS and TippingPoint Virtual Security Management System vSMS before 4.1 patch 3 and 4.2 before patch 1 do not require authentication for JBoss RMI requests, which allows remote attackers to execute arbitrary code by 1 uploading this code within an archiv...
CVE-2015-2117
HP TippingPoint Security Management System SMS and TippingPoint Virtual Security Management System vSMS before 4.1 patch 3 and 4.2 before patch 1 do not require authentication for JBoss RMI requests, which allows remote attackers to execute arbitrary code by 1 uploading this code within an archiv...
CVE-2015-2117
HP TippingPoint Security Management System SMS and TippingPoint Virtual Security Management System vSMS before 4.1 patch 3 and 4.2 before patch 1 do not require authentication for JBoss RMI requests, which allows remote attackers to execute arbitrary code by 1 uploading this code within an archiv...
BlackBerry Enterprise Service Remote Code Execution (KB35139)
According to its version, the BlackBerry Enterprise Service BES install on the remote host is older than 10.1.3. Such versions may be affected by a remote code execution vulnerability in its Universal Device Service UDS component because it does not properly restrict access to the JBoss Remote...
McAfee SmartFilter Administration < 4.2.1.01 Unauthenticated Access to JBOSS RMI (SB10029)
The version of McAfee SmartFilter Administration installed on the remote Windows host is earlier than 4.2.1.01. It is, therefore, potentially affected by a code execution vulnerability. The Remote Method Invocation service can be used without authentication to deploy a malicious .war file. By...
CVE-2012-5417
Cisco Prime Data Center Network Manager DCNM before 6.11 does not properly restrict access to certain JBoss MainDeployer functionality, which allows remote attackers to execute arbitrary commands via JBoss Application Server Remote Method Invocation RMI services, aka Bug ID CSCtz44924...
CVE-2012-4599
McAfee SmartFilter Administration, and SmartFilter Administration Bess Edition, before 4.2.1.01 does not require authentication for access to the JBoss Remote Method Invocation RMI interface, which allows remote attackers to execute arbitrary code via a crafted .war file...
Authentication flaw
McAfee SmartFilter Administration, and SmartFilter Administration Bess Edition, before 4.2.1.01 does not require authentication for access to the JBoss Remote Method Invocation RMI interface, which allows remote attackers to execute arbitrary code via a crafted .war file...
CVE-2012-4599
McAfee SmartFilter Administration, and SmartFilter Administration Bess Edition, before 4.2.1.01 does not require authentication for access to the JBoss Remote Method Invocation RMI interface, which allows remote attackers to execute arbitrary code via a crafted .war file...