Lucene search
+L

17 matches found

seebug
seebug
added 2014/07/01 12:0 a.m.14 views

LANDesk Lenovo ThinkManagement Suite 9.0.3 Core Server Remote Arbitrary File Deletion Vulnerability

No description provided by source. LANDesk Lenovo ThinkManagement Suite 9.0.3 Core Server WSVulnerabilityCore.dll SetTaskLogByFile Remote Arbitrary File Deletion Vulnerability Tested against: Microsoft Windows Server 2003 r2 sp2 Software home page:...

7.1AI score
Exploits0
checkpoint_advisories
checkpoint_advisories
added 2012/06/11 12:0 a.m.44 views

LANDesk ThinkManagement Suite ServerSetup.asmx Directory Traversal (CVE-2012-1195)

A directory traversal vulnerability has been reported in LANDesk Lenovo ThinkManagement Suite...

6.4AI score0.68399EPSS
Exploits11
saint
saint
added 2012/04/27 12:0 a.m.32 views

LANDesk ThinkManagement Suite ServerSetup.asmx Directory Traversal

Added: 04/27/2012 CVE: CVE-2012-1195 BID: 52023 OSVDB: 79276 Background LANDesk Lenovo ThinkManagement Console provides hardware discovery, comprehensive inventory, and reporting for Lenovo systems. Problem LANDesk Lenovo ThinkManagement Console runs a web application under the Microsoft IIS web...

7.5CVSS6.2AI score0.68399EPSS
Exploits11
saint
saint
added 2012/04/27 12:0 a.m.37 views

LANDesk ThinkManagement Suite ServerSetup.asmx Directory Traversal

Added: 04/27/2012 CVE: CVE-2012-1195 BID: 52023 OSVDB: 79276 Background LANDesk Lenovo ThinkManagement Console provides hardware discovery, comprehensive inventory, and reporting for Lenovo systems. Problem LANDesk Lenovo ThinkManagement Console runs a web application under the Microsoft IIS web...

7.5CVSS6.2AI score0.68399EPSS
Exploits11
seebug
seebug
added 2012/04/12 12:0 a.m.40 views

LANDesk Lenovo ThinkManagement Console Remote Command Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

7.1AI score0.68399EPSS
Exploits12
nessus
nessus
added 2012/04/10 12:0 a.m.38 views

Lenovo ThinkManagement Console RunAMTCommand Operation -PutUpdateFileCore Command Parsing Arbitrary File Upload

The version of Lenovo ThinkManagement Console hosted on the remote web server contains a flaw in the 'ServerSetup.asmx' script that allows a remote, unauthenticated attacker to upload and run arbitrary ASP scripts with the privileges of the web user. In addition, this version of Lenovo...

7.5CVSS5.4AI score0.68399EPSS
Exploits11References2
zdt
zdt
added 2012/04/08 12:0 a.m.59 views

LANDesk Lenovo ThinkManagement Console Remote Command Execution

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

7.1AI score0.68399EPSS
Exploits12
metasploit
metasploit
added 2012/04/07 5:4 p.m.68 views

LANDesk Lenovo ThinkManagement Console Remote Command Execution

This module can be used to execute a payload on LANDesk Lenovo ThinkManagement Suite 9.0.2 and 9.0.3. The payload is uploaded as an ASP script by sending a specially crafted SOAP request to "/landesk/managementsuite/core/core.anonymous/ServerSetup.asmx" , via a "RunAMTCommand" operation with the...

7.5CVSS7.3AI score0.68399EPSS
Exploits12
dsquare
dsquare
added 2012/03/30 12:0 a.m.45 views

Lenovo ThinkManagement Console 9.0.3 File Upload

File upload vulnerability in Lenovo ThinkManagement Console Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...

7.5CVSS0.4AI score0.68399EPSS
Exploits11References3
packetstorm
packetstorm
added 2012/03/19 12:0 a.m.45 views

LANDesk Lenovo ThinkManagement Suite 9.0.3 Code Execution

LANDesk Lenovo ThinkManagement Suite 9.0.3 Core Server AMTConfig.Business.dll RunAMTCommand Remote Code Execution Vulnerability Tested against: Microsoft Windows Server 2003 r2 sp2 Software home page: http://www.landesk.com/lenovo/thinkmanagement-console.aspx Download url:...

7.5CVSS0.4AI score0.68399EPSS
Exploits11
exploitdb
exploitdb
added 2012/03/19 12:0 a.m.26 views

LANDesk Lenovo ThinkManagement Suite 9.0.3 Core Server - Arbitrary File Deletion

LANDesk Lenovo ThinkManagement Suite 9.0.3 Core Server WSVulnerabilityCore.dll SetTaskLogByFile Remote Arbitrary File Deletion Vulnerability Tested against: Microsoft Windows Server 2003 r2 sp2 Software home page: http://www.landesk.com/lenovo/thinkmanagement-console.aspx Download url:...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2012/03/19 12:0 a.m.27 views

LANDesk Lenovo ThinkManagement Suite 9.0.3 - Core Server Remote Code Execution

LANDesk Lenovo ThinkManagement Suite 9.0.3 Core Server AMTConfig.Business.dll RunAMTCommand Remote Code Execution Vulnerability Tested against: Microsoft Windows Server 2003 r2 sp2 Software home page: http://www.landesk.com/lenovo/thinkmanagement-console.aspx Download url:...

7.4AI score
Exploits0
nvd
nvd
added 2012/02/18 12:55 a.m.30 views

CVE-2012-1195

Unrestricted file upload vulnerability in andesk/managementsuite/core/core.anonymous/ServerSetup.asmx in the ServerSetup web service in Lenovo ThinkManagement Console 9.0.3 allows remote attackers to execute arbitrary code by uploading a file with an executable extension via a PutUpdateFileCore...

7.5CVSS7.6AI score0.68399EPSS
Exploits11References5
nvd
nvd
added 2012/02/18 12:55 a.m.16 views

CVE-2012-1196

Directory traversal vulnerability in the VulCore web service WSVulnerabilityCore/VulCore.asmx in Lenovo ThinkManagement Console 9.0.3 allows remote attackers to delete arbitrary files via a .. dot dot in the filename parameter in a SetTaskLogByFile SOAP request...

5CVSS6.7AI score0.55495EPSS
Exploits5References5
prion
prion
added 2012/02/18 12:55 a.m.13 views

Directory traversal

Directory traversal vulnerability in the VulCore web service WSVulnerabilityCore/VulCore.asmx in Lenovo ThinkManagement Console 9.0.3 allows remote attackers to delete arbitrary files via a .. dot dot in the filename parameter in a SetTaskLogByFile SOAP request...

5CVSS7.2AI score0.55495EPSS
Exploits5References5Affected Software1
cvelist
cvelist
added 2012/02/18 12:0 a.m.23 views

CVE-2012-1196

Directory traversal vulnerability in the VulCore web service WSVulnerabilityCore/VulCore.asmx in Lenovo ThinkManagement Console 9.0.3 allows remote attackers to delete arbitrary files via a .. dot dot in the filename parameter in a SetTaskLogByFile SOAP request...

6.7AI score0.55495EPSS
Exploits5References5
cve
cve
added 2012/02/18 12:0 a.m.134 views

CVE-2012-1196

CVE-2012-1196 describes a directory traversal vulnerability in Lenovo ThinkManagement Console 9.0.3 within the VulCore web service (WSVulnerabilityCore/VulCore.asmx). A remote attacker can abuse the SetTaskLogByFile SOAP operation (via a filename parameter containing ..) to delete arbitrary files...

5CVSS6.9AI score0.55495EPSS
Exploits5References5Affected Software1
Rows per page
Query Builder