111 matches found
CVE-2017-10270
Vulnerability in the Oracle Identity Manager Connector component of Oracle Fusion Middleware subcomponent: Microsoft Active Directory. The supported version that is affected is 9.1.1.5.0. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracl...
Unspecified Vulnerability in Oracle Identity Manager Connector
Oracle Fusion Middleware Oracle Fusion Middleware is a set of Oracle's business innovation platform for enterprise and cloud environments, which provides middleware, software collections, and other capabilities.Oracle Identity Manager Connector is one of the resource adapters. A security...
KLA10986 Information disclosure vulnerability in Microsoft Active Directory Federation Services
An improper honoring of XML External Entities was found in Microsoft Active Directory Federation Services ADFS. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed request. Original advisories...
Microsoft Active Directory Federation Services CVE-2016-0037 Denial of Service Vulnerability
Description Microsoft Active Directory Federation Services is prone to a denial of service vulnerability. Successful exploits may allow the attacker to cause the server to become non-responsive, resulting in denial of service conditions. Technologies Affected Microsoft Active Directory Federation...
KLA10752 Denial of service vulnerability in Microsoft Acrtive Directory Federation Services
Lack of input data checks was found in Microsoft Active Directory Federation Services. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed input to form-based authentication. Original advisories...
Cisco Sourcefire User Agent 2.2 - Insecure File Permissions
Exploit for windows platform in category local exploits / Cisco Sourcefire User Agent Insecure File Permissions Vulnerability Vendor: Cisco Product webpage: http://www.cisco.com Affected versions: Cisco SF User Agent 2.2 Fixed versions: Cisco SF User Agent 2.2-25 Date: 08/09/2015 Credits: Glafkos...
Microsoft Active Directory Federation Services crossite scripting
Crossite scipring in web interface...
Microsoft Active Directory Federation Services CVE-2015-1757 Privilege Escalation Vulnerability
Description Microsoft Active Directory Federation Services is prone to a remote privilege-escalation vulnerability because it fails to sanitize user-supplied input. An attacker can exploit this issue to gain elevated privileges and perform unauthorized actions in the context of the currently...
CVE-2015-1638
Microsoft Active Directory Federation Services AD FS 3.0 on Windows Server 2012 R2 does not properly handle logoff actions, which allows remote attackers to bypass intended access restrictions by leveraging an unattended workstation, aka "Active Directory Federation Services Information Disclosur...
Microsoft Active Directory Federation Services CVE-2015-1638 Information Disclosure Vulnerability
Description Microsoft Active Directory Federation Services is prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information that may aid in further attacks. Technologies Affected Microsoft Active Directory Federation Services 3.0...
Microsoft Active Directory LDAP Modify Request Buffer Overflow (MS07-039) - Ver2 (CVE-2007-0040)
Lightweight Directory Access Protocol LDAP is Internet standard protocol designed for querying and modifying directory services. Multiple vulnerabilities have been reported in Microsoft Windows Active Directory. The flaws are in the way the Active Directory handles LDAP requests. The...
Microsoft Active Directory Federation Services Information Disclosure Vulnerability (3003381)
This host is missing an important security update according to Microsoft Bulletin MS14-077. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Active Directory Federation Services CVE-2014-6331 Information Disclosure Vulnerability
Description Microsoft Active Directory Federation Services is prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information that may aid in further attacks. Technologies Affected Microsoft Active Directory Federation Services 2.0...
KLA10612 Information disclosure vulnerability in Microsoft AD Federation Services
An unspecified vulnerability was found in Microsoft AD Federation Services. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via unattended workstation manipulations. Original advisories CVE-2014-6331 Related products...
Microsoft Active Directory LDAP Server Username Enumeration Weakness
No description provided by source. source: http://www.securityfocus.com/bid/32305/info Microsoft Active Directory is prone to a username-enumeration weakness because of a design error in the application when verifying user-supplied input. Attackers may exploit this weakness to discern valid...
Microsoft Active Directory CVE-2014-1812 Privilege Escalation Vulnerability
Description Microsoft Active Directory is prone to a privilege-escalation vulnerability. An authenticated attacker can exploit this issue to gain access to services with escalated privileges. Technologies Affected Avaya Aura Conferencing 6.0 Avaya Aura Conferencing 6.0 Standard Avaya Aura...
[Directory Scanner v3.0] Remote Directory Server Fingerprinting Tool
Directory Scanner is the FREE Directory Server fingerprinting tool. It can help you to remotely detect the type of Directory servers such as Microsoft Active Directory, Novell eDirectory etc running on the local network as well as Internet. In addition to this, it can greatly help administrators ...
CVE-2013-3868
Microsoft Active Directory Lightweight Directory Service AD LDS on Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Windows 8 and Active Directory Services on Windows Server 2008 SP2 and R2 SP1 and Server 2012 allow remote attackers to cause a denial of service LDAP...
Microsoft LDAP Remote Anonymous Denial of Service (MS13-079; CVE-2013-3868)
A denial of service vulnerability exists in implementations of Microsoft Active Directory...
Microsoft Active Directory Federation Services CVE-2013-3185 Information Disclosure Vulnerability
Description Microsoft Active Directory Federation Services is prone to an information disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information that may aid in further attacks. Technologies Affected Avaya CallPilot 4.0 Avaya CallPilot 4.0.1 Avaya CallPil...