49 matches found
EUVD-2005-3656
Malware in sbrugna...
EUVD-2005-3655
Malware in sbrugna...
legato-project.net Cross Site Scripting vulnerability OBB-3376907
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
legato-project.net Cross Site Scripting vulnerability OBB-2623772
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
legato-project.net XSS vulnerability
Open Bug Bounty ID: OBB-679076 Description| Value ---|--- Affected Website:| legato-project.net Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
EMC Legato Networker Remote Exec Service Stack Overflow RCE
The EMC Legato Networker application running on the remote host is affected by a stack overflow condition in the Networker Remote Exec Service nsrexecd.exe, specifically within the sprintf function, when handling poll or kill requests. An unauthenticated, remote attacker can exploit this, via a...
EMC NetWorker Installed
EMC NetWorker formerly Legato NetWorker, a suite of enterprise level data protection software, is installed on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid62945; scriptversion"1.14"; scriptsetattributeattribute:"pluginmodificationdate",...
FreeBSD : nwclient -- multiple vulnerabilities (d177d9f9-e317-11d9-8088-00123f0f7307)
Insecure file permissions, network access control and DNS usage put systems that use Legato NetWorker at risk. When the software is running, several files that contain sensitive information are created with insecure permissions. The information exposed include passwords and can therefore be used...
Multiple Vendor RPC portmapper Access Restriction Bypass
The RPC portmapper running on the remote host possibly included with EMC Legato Networker, IBM Informix Dynamic Server, or AIX has an access restriction bypass vulnerability. The service will only process pmapset and pmapunset requests that have a source address of '127.0.0.1'. Since communicatio...
Multiple Vendor librpc.dll Remote Information Disclosure Vulnerability
This vulnerability allows remote attackers to register RPC services on vulnerable installations of EMC Legato Networker and IBM Informix Dynamic Server. Authentication is not required to exploit this vulnerability. The flaw exists within the librpc.dll component which listens by default on UDP po...
Update Protection against Multiple Vendors librpc.dll Stack Buffer Overflow
A buffer overflow vulnerability exists in IBM's Informix Dynamic Server and EMC's Legato Networker. The vulnerability is due to insufficient validation of user input during authentication by the RPC protocol parsing library, librpc.dll, used by the Portmapper service portmap.exe. Successful...
Multiple Vendors RPC librpc.dll Stack Buffer Overflow (CVE-2009-2754)
Remote Procedure Call RPC is a protocol that a program can use to request a service from a program located on another computer in a network. The librpc.dll handles the RPC protocol parsing. A buffer overflow vulnerability exists in IBM's Informix Dynamic Server and EMC's Legato Networker. The...
Preemptive Protection against Multiple Vendors librpc.dll Stack Buffer Overflow
A buffer overflow vulnerability exists in IBM's Informix Dynamic Server and EMC's Legato Networker. Informix is a family of relational database management system RDBMS products by IBM. The vulnerability is due to insufficient validation of user input during authentication by the RPC protocol...
CVE-2009-2754
CVE-2009-2754 relates to a stack-based buffer overflow in librpc.dll’s authentication for the Portmapper service (portmap.exe) used by IBM Informix Dynamic Server (IDS) 10.x prior to 10.00.TC9 and 11.x prior to 11.10.TC3, and EMC Legato NetWorker. The issue is triggered by a crafted parameter siz...
Multiple Vendor librpc.dll Signedness Error Remote Code Execution Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of both IBM Informix Dynamic Server and EMC Legato Networker. User interaction is not required to exploit this vulnerability. The specific flaw exists within the RPC protocol parsing library, librpc.dll,...
EMC Legato NetWorker Remote Execution Service Buffer Overflow (CVE-2007-3618)
EMC Legato NetWorker is an enterprise level backup and recovery suite product. It provides backup functionality for Windows, Linux, Unix, Netware, and VMS environments. EMC Legato NetWorker is designed with a Server-Agent principle. The communication between nodes is facilitated via a series of...
FreeBSD Ports: nwclient
The remote host is missing an update to the system as announced in the referenced advisory. VID d177d9f9-e317-11d9-8088-00123f0f7307 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: nwclient
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
EMC Legato Networker nsrexecd.exe服务远程栈溢出漏洞
BUGTRAQ ID: 25375 CVECAN ID: CVE-2007-3618 EMC Legato NetWorker是一款跨平台的备份和恢复系统。 EMC Legato NetWorker的远程Exec服务(nsrexecd.exe)存在栈溢出漏洞,远程攻击者可能利用此漏洞控制服务器。 如果向poll或kill请求提交了超长的无效subcmd请求的话,就可以在对sprintf的调用中触发这个溢出,导致执行任意指令。 EMC Legato Networker 7.x.x 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
EMC Legato Networker buffer overflow
Buffer overflow in SUNRPC TCP/111 Networker Remote Exec Service...