EUVD-2015-0934

Malware in sbrugna...

labtech-hydrogen.com Cross Site Scripting vulnerability OBB-2145431

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

CVE-2020-14159

By using an Automate API in ConnectWise Automate before 2020.5.178, a remote authenticated user could execute commands and/or modifications within an individual Automate instance by triggering an SQL injection vulnerability in /LabTech/agent.aspx. This affects versions before 2019.12.337, 2020...

Uninstalling Veeam Backup & Replication plug-in for Labtech

Challenge Uninstalling the plug-in using Plugin Manager only removes it from the list of plugins but leaves Veeam components reports, monitors, etc. and database data intact. Cause Uninstalling the Veeam Backup & Replication Plug-in by means of the LabTech Plugin Manager is not supported. If you...

LabTech Database Backup Tasks Run Too Long

Challenge With Veeam Plug-in for LabTech, the database backup tasks run for an extended period of time. Cause This happens due to the growth of pluginveeambrsystemlog table. Solution The issue should be fixed in later releases. In the meantime, a workaround is available. Download the fix here...

CVE-2015-0926

Labtech before 100.237 on Linux uses world-writable permissions for root-executed scripts, which allows local users to gain privileges by modifying a script file...

Design/Logic Flaw

Labtech before 100.237 on Linux uses world-writable permissions for root-executed scripts, which allows local users to gain privileges by modifying a script file...

CVE-2015-0926

Labtech before 100.237 on Linux uses world-writable permissions for root-executed scripts, which allows local users to gain privileges by modifying a script file...

CVE-2015-0926

LabTech (LabTech Software) on Linux prior to version 100.237 exposes world-writable permissions on root-executed startup scripts. This allows a local authenticated user to gain privileges by modifying the script file. CVE-2015-0926 is supported by multiple sources (NVD entry and CERT/CVE referenc...

LabTech Insecure File Permissions Vulnerability

LabTech is an international company specializing in providing analytical chemistry laboratories from sample pre-treatment to analytical testing solutions for food safety, environmental testing, disease control and materials analysis. LabTech has an insecure file permission vulnerability that can ...

LabTech contains privilege escalation vulnerability

Overview LabTech startup scripts and directories on Linux platforms are world-writeable and the scripts execute with root privileges. Description CWE-284: Improper Access Control LabTech startup scripts and directories on Linux platforms are world-writeable and the scripts execute with root...