Lucene search
+L

62 matches found

Packet Storm
Packet Storm
•added 2012/08/09 12:0 a.m.•39 views

NetDecision 4.2 TFTP Writable Directory Traversal Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "NetDecision 4.2...

10CVSS0.3AI score0.5451EPSS
Exploits7
Metasploit
Metasploit
•added 2012/08/08 2:28 p.m.•47 views

NetDecision 4.2 TFTP Writable Directory Traversal Execution

This module exploits a vulnerability found in NetDecision 4.2 TFTP server. The software contains a directory traversal vulnerability that allows a remote attacker to write arbitrary file to the file system, which results in code execution under the context of user executing the TFTP Server. This...

10CVSS0.9AI score0.5451EPSS
Exploits7
Metasploit
Metasploit
•added 2012/08/08 2:26 p.m.•66 views

NetDecision 4.2 TFTP Directory Traversal

This modules exploits a directory traversal vulnerability in NetDecision 4.2 TFTP service. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "NetDecision 4.2 TFTP Directory Traversal", 'Descriptio...

10CVSS7AI score0.5451EPSS
Exploits7
NVD
NVD
•added 2012/03/19 7:55 p.m.•15 views

CVE-2012-1464

Dashboard Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the installation path via a request with a trailing "?" character, which causes Dashboard to attempt to access a non-existent resource. NOTE: some of these details are obtained from third party informatio...

5CVSS6.6AI score0.03368EPSS
Exploits1References8
NVD
NVD
•added 2012/03/19 7:55 p.m.•17 views

CVE-2012-1466

The Traffic Grapher Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the source code of NtDecision script files with a .nd extension via an invalid version number in an HTTP request, as demonstrated using default.nd. NOTE: some of these details are obtained from...

5CVSS6.8AI score0.03368EPSS
Exploits1References8
NVD
NVD
•added 2012/03/19 7:55 p.m.•21 views

CVE-2012-1465

Stack-based buffer overflow in the HTTP Server in NetMechanica NetDecision before 4.6.1 allows remote attackers to cause a denial of service application crash via a long URL in an HTTP request. NOTE: some of these details are obtained from third party information...

4.3CVSS7AI score0.27397EPSS
Exploits4References9
ATTACKERKB
ATTACKERKB
•added 2012/03/19 7:55 p.m.•4 views

CVE-2012-1465

Stack-based buffer overflow in the HTTP Server in NetMechanica NetDecision before 4.6.1 allows remote attackers to cause a denial of service application crash via a long URL in an HTTP request. NOTE: some of these details are obtained from third party information...

4.3CVSS6.1AI score0.27397EPSS
Exploits4References14
ATTACKERKB
ATTACKERKB
•added 2012/03/19 7:55 p.m.•3 views

CVE-2012-1464

Dashboard Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the installation path via a request with a trailing "?" character, which causes Dashboard to attempt to access a non-existent resource. NOTE: some of these details are obtained from third party informatio...

5CVSS5.6AI score0.03368EPSS
Exploits1References11
Prion
Prion
•added 2012/03/19 7:55 p.m.•15 views

Stack overflow

Stack-based buffer overflow in the HTTP Server in NetMechanica NetDecision before 4.6.1 allows remote attackers to cause a denial of service application crash via a long URL in an HTTP request. NOTE: some of these details are obtained from third party information...

4.3CVSS7.5AI score0.27397EPSS
Exploits4References9Affected Software1
Prion
Prion
•added 2012/03/19 7:55 p.m.•11 views

Design/Logic Flaw

Dashboard Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the installation path via a request with a trailing "?" character, which causes Dashboard to attempt to access a non-existent resource. NOTE: some of these details are obtained from third party informatio...

5CVSS7.1AI score0.03368EPSS
Exploits1References8Affected Software1
CVE
CVE
•added 2012/03/19 7:0 p.m.•42 views

CVE-2012-1466

NetMechanica NetDecision Traffic Grapher Server information disclosure CVE-2012-1466 affects the NetDecision Traffic Grapher Server prior to version 4.6.1. An attacker can remotely obtain the source code of NtDecision scripts (.nd) by sending an HTTP request with an invalid version number (demons...

5CVSS7AI score0.03368EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
•added 2012/03/19 7:0 p.m.•22 views

CVE-2012-1466

The Traffic Grapher Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the source code of NtDecision script files with a .nd extension via an invalid version number in an HTTP request, as demonstrated using default.nd. NOTE: some of these details are obtained from...

6.8AI score0.03368EPSS
Exploits1References8
Cvelist
Cvelist
•added 2012/03/19 7:0 p.m.•23 views

CVE-2012-1465

Stack-based buffer overflow in the HTTP Server in NetMechanica NetDecision before 4.6.1 allows remote attackers to cause a denial of service application crash via a long URL in an HTTP request. NOTE: some of these details are obtained from third party information...

7AI score0.27397EPSS
Exploits4References9
Cvelist
Cvelist
•added 2012/03/19 7:0 p.m.•22 views

CVE-2012-1464

Dashboard Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the installation path via a request with a trailing "?" character, which causes Dashboard to attempt to access a non-existent resource. NOTE: some of these details are obtained from third party informatio...

6.6AI score0.03368EPSS
Exploits1References8
CVE
CVE
•added 2012/03/19 7:0 p.m.•48 views

CVE-2012-1464

CVE-2012-1464 affects NetMechanica NetDecision Dashboard Server prior to 4.6.1. A trailing "?" in a request causes Dashboard to access a non-existent resource, enabling remote attackers to disclose the installation path (information disclosure). Documented across NVD and OpenVAS entries; CVSSv2 b...

5CVSS6.8AI score0.03368EPSS
Exploits1References8Affected Software1
CVE
CVE
•added 2012/03/19 7:0 p.m.•48 views

CVE-2012-1465

CVE-2012-1465 corresponds to a stack-based buffer overflow in NetMechanica NetDecision’s HTTP Server (NetDecision/TrafficGrapherServer.exe) prior to version 4.6.1, enabling DoS via a long URL in HTTP requests. Connected artifacts show a related directory-traversal/vector in NetDecision NOCVision ...

4.3CVSS7.2AI score0.27397EPSS
Exploits4References9Affected Software1
0day.today
0day.today
•added 2012/03/15 12:0 a.m.•23 views

NetDecision 4.5.1 HTTP Server Buffer Overflow

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

7.1AI score
Exploits0
Packet Storm
Packet Storm
•added 2012/03/15 12:0 a.m.•20 views

NetDecision 4.5.1 HTTP Server Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "NetDecision 4.5.1...

0.5AI score
Exploits0
Exploit DB
Exploit DB
•added 2012/03/15 12:0 a.m.•22 views

Netmechanica NetDecision HTTP Server 4.5.1 - Remote Buffer Overflow (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "NetDecision 4.5.1...

7.4AI score
Exploits0
Metasploit
Metasploit
•added 2012/03/14 9:50 p.m.•33 views

NetDecision NOCVision Server Directory Traversal

This module exploits a directory traversal bug in NetDecision's TrafficGrapherServer.exe service. This is done by using "..." in the path to retrieve a file on a vulnerable machine. This module requires Metasploit: https://metasploit.com/download Current source:...

4.3CVSS7.2AI score0.27397EPSS
Exploits4
Rows per page
Query Builder