455 matches found
libcsp library buffer overflow vulnerability (CNVD-2016-10598)
The libcsp library is a small network layer transport protocol library designed for Cubesats small protocol stacks written in C. A buffer overflow vulnerability exists in the zmq interface in the cspifzmqhub.c file in libcsp library v1.4 and earlier versions, which can be exploited by an attacker...
IBM WebSphere MQ Denial of Service Vulnerability (CNVD-2016-08271)
IBM WebSphere MQ is a messaging middleware product from IBM, USA. The product focuses on providing a reliable and proven messaging backbone for Service Oriented Architecture SOA. A denial of service vulnerability exists in IBM WebSphere MQ, which can be exploited by remote attackers to cause a...
Vulnerability is a combination punch--attack of distributed nodes-the vulnerability of early warning-the black bar safety net
Distributed systems mostly rely on the message queue middleware to solve the asynchronous processing, the application of coupled problems such as Message Queuing middleware of choice in turn depends on the overall system design and implementation, message packaging, transmission, processing throu...
CVE-2016-5879
MQCLI on IBM MQ Appliance M2000 and M2001 devices allows local users to execute arbitrary shell commands via a crafted 1 Disaster Recovery or 2 High Availability command...
IBM MQ Appliance Local Command Execution Vulnerability
The IBM MQ Appliance is a solution that supports IBM MQ deployment for new use cases and simplifies existing deployment options. A local command execution vulnerability exists in IBM MQ Appliance. A local attacker is allowed to exploit the vulnerability to execute arbitrary commands and obtain...
The vulnerability of the WebSphere MQ message processing service allows attackers to circumvent existing access restrictions.
The vulnerability of the WebSphere MQ messaging service is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating locally, to circumvent existing access restrictions...
The vulnerability of the WebSphere MQ message processing service allows attackers to escalate their privileges.
The vulnerability of the WebSphere MQ messaging service is related to errors in the management of registration data. Exploiting this vulnerability can allow a malicious actor, operating locally, to increase their privileges using the mqcertck tool...
The vulnerability of the WebSphere MQ message processing service, which allows a hacker to obtain confidential information
The vulnerability of the input console for running the runmqsc command of the WebSphere MQ messaging service is related to the lack of protection for operational data. Exploiting this vulnerability could allow an attacker acting locally to obtain confidential information...
The vulnerability of the Windows operating system, which allows a perpetrator to increase their privileges or execute arbitrary code
Vulnerability exists in the Message Queue Service MSMQ, the BthPan.sys and MQAC.sys drivers. This allows a malicious individual to elevate their privileges within the system and execute arbitrary code...
IBM WebSphere MQ Arbitrary Command Execution Vulnerability
IBM WebSphere MQ is a messaging middleware product. An arbitrary command execution vulnerability exists in IBM WebSphere MQ, which can be exploited by a local attacker to execute arbitrary commands with elevated privileges...
CVE-2016-2057
lib/xymondipc.c in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 use weak permissions 666 for an unspecified IPC message queue, which allows local users to inject arbitrary messages by writing to that queue...
DEBIAN-CVE-2016-2057
lib/xymondipc.c in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 use weak permissions 666 for an unspecified IPC message queue, which allows local users to inject arbitrary messages by writing to that queue...
UBUNTU-CVE-2016-2057
lib/xymondipc.c in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 use weak permissions 666 for an unspecified IPC message queue, which allows local users to inject arbitrary messages by writing to that queue...
CVE-2016-2057
lib/xymondipc.c in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 use weak permissions 666 for an unspecified IPC message queue, which allows local users to inject arbitrary messages by writing to that queue...
CVE-2016-2057
lib/xymondipc.c in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 use weak permissions 666 for an unspecified IPC message queue, which allows local users to inject arbitrary messages by writing to that queue...
Cisco Unified Web Interaction Manager Web Interface Denial of Service Vulnerability
Cisco Unified Web Interaction Manager is a WEB interaction manager. An input validation vulnerability in Cisco Unified Web Interaction Manager allows remote attackers to conduct denial of service attacks by deleting the default system folder in the message queue via the WEB interface...
IBM MQ Light Denial of Service Vulnerability (CNVD-2015-05122)
IBM MQ Light is a messaging service from IBM USA based on IBM Bluemix, a PaaS platform for creating, deploying and managing applications on the cloud. A security vulnerability exists in IBM MQ Light versions 1.0 and 1.0.0.1 due to the program failing to properly handle authentication credentials....
UBUNTU-CVE-2014-9721
libzmq before 4.0.6 and 4.1.x before 4.1.1 allows remote attackers to conduct downgrade attacks and bypass ZMTP v3 protocol security mechanisms via a ZMTP v2 or earlier header...
IBM WebSphere MQ Resource Management Denial of Service Vulnerability
IBM WebSphere MQ is used to provide messaging services in the enterprise. A security vulnerability exists in IBM WebSphere MQ, which can be exploited by remote attackers to cause a denial of service with the 'PCF query' privilege with the help of a specially crafted query...
Microsoft Message Queue QMGetRemoteQueueName Buffer Overflow - Ver2 (CVE-2008-3479)
A buffer overflow vulnerability has been reported in Microsoft Windows 2000. An attacker could exploit this vulnerability via a crafted RPC call, related to improper processing of parameters to string APIs. Successful exploitation of this vulnerability could allow a remote attacker to execute...