14 matches found
EUVD-2016-10537
Malware in sbrugna...
EUVD-2017-8348
Malware in sbrugna...
EUVD-2011-0403
Malware in sbrugna...
Buffer overflow
Processing malformed SOAP messages when performing the HNAP Login action causes a buffer overflow in the stack in some D-Link DIR routers. The vulnerable XML fields within the SOAP body are: Action, Username, LoginPassword, and Captcha. The following products are affected: DIR-823, DIR-822,...
CVE-2016-6563 D-Link DIR routers contain a stack-based buffer overflow in the HNAP Login action
Processing malformed SOAP messages when performing the HNAP Login action causes a buffer overflow in the stack in some D-Link DIR routers. The vulnerable XML fields within the SOAP body are: Action, Username, LoginPassword, and Captcha. The following products are affected: DIR-823, DIR-822,...
Security Bulletin: Potential Information Disclosure in WebSphere Application Server (CVE-2016-9736)
Summary There is a potential information disclosure in WebSphere Application Server using malformed SOAP requests on WebSphere Application Server. Vulnerability Details CVEID: CVE-2016-9736 DESCRIPTION: IBM WebSphere Application Server using malformed SOAP requests could allow a remote attacker t...
CVE-2017-17182
Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a out-of-bounds read vulnerability. Due to insufficient input validation, an...
CVE-2017-17184
Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. Due to insufficient input validation, an...
CVE-2017-17186
Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a DoS vulnerability. Due to insufficient input validation, an authenticated, remote...
Design/Logic Flaw
Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a out-of-bounds read vulnerability. Due to insufficient input validation, an...
CVE-2017-17184
Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. Due to insufficient input validation, an...
Information disclosure
IBM WebSphere Application Server using malformed SOAP requests could allow a remote attacker to obtain sensitive information...
SAP Control SOAP Web Service Remote Code Execution (SAP Note 1414444)
The version of SAP Control, offered by 'sapstartsrv.exe', reportedly contains an arbitrary remote code execution vulnerability. A malformed SOAP request via POST can be used to reach an unbounded copy loop, which results in attacker-supplied data being written into existing function pointers. A...
Microsoft SharePoint Malformed SOAP Request Remote Code Execution Vulnerability
Description Microsoft SharePoint is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the privileges of the guest account on the SharePoint server. Failed exploit attempts will result in a denial-of-service condition. Technologies...