12 matches found
SUSE CVE-2018-1002103
In Minikube versions 0.3.0-0.29.0, minikube exposes the Kubernetes Dashboard listening on the VM IP at port 30000. In VM environments where the IP is easy to predict, the attacker can use DNS rebinding to indirectly make requests to the Kubernetes Dashboard, create a new Kubernetes Deployment...
GHSA-6PCV-QQX4-MXM3 Minikube RCE via DNS Rebinding
In Minikube versions 0.3.0-0.29.0, minikube exposes the Kubernetes Dashboard listening on the VM IP at port 30000. In VM environments where the IP is easy to predict, the attacker can use DNS rebinding to indirectly make requests to the Kubernetes Dashboard, create a new Kubernetes Deployment...
CVE-2018-18014
Lack of authentication in Citrix Xen Mobile through 10.8 allows low-privileged local users to execute system commands as root by making requests to private services listening on ports 8000, 30000 and 30001. NOTE: the vendor disputes that this is a vulnerability, stating it is "already mitigated b...
PT-2018-14321 · Citrix · Citrix Xen Mobile
Name of the Vulnerable Software and Affected Versions: Citrix Xen Mobile versions through 10.8 Description: The issue allows low-privileged local users to execute system commands as root by making requests to private services listening on ports 8000, 30000, and 30001. The vendor disputes that thi...
Intel Security True Key SecureExecute Privilege Escalation Vulnerability
This vulnerability allows remote attackers to escalate privileges on vulnerable installations of Intel Security True Key. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the TrueK...
SolidWorks Workgroup PDM 2014 SP2 Opcode 2001 - Denial of Service
SolidWorks Workgroup PDM 2014 SP2 Opcode 2001 - Denial of Service ''' Exploit Title: SolidWorks Workgroup PDM 2014 SP2 Opcode 2001 Remote Code Execution Vulnerability Date: 2-18-2014 Author: Mohamed Shetta Email: mshetta |at| live |dot| com Vendor Homepage:...
CVE-2009-4988
Stack-based buffer overflow in NTNamingService.exe in SAP Business One 2005 A 6.80.123 and 6.80.320 allows remote attackers to execute arbitrary code via a long GIOP request to TCP port 30000...
Stack overflow
Stack-based buffer overflow in NTNamingService.exe in SAP Business One 2005 A 6.80.123 and 6.80.320 allows remote attackers to execute arbitrary code via a long GIOP request to TCP port 30000...
CVE-2009-4988
Stack-based buffer overflow in NTNamingService.exe in SAP Business One 2005 A 6.80.123 and 6.80.320 allows remote attackers to execute arbitrary code via a long GIOP request to TCP port 30000...
SAP Business One 2005-A License Manager Remote BOF Exploit
No description provided by source. !/usr/bin/python import socket, time INFO NTNamingService.exe License Manager 2005 for SAP Business One 2005-A is vulnerable to a stack-based buffer overflow allowing for full system compromise by an unauthenticated user that has TCP/IP access to SAP's license...
SAP Business One 2005-A License Manager Remote BOF Exploit
Exploit for windows platform in category remote exploits ========================================================== SAP Business One 2005-A License Manager Remote BOF Exploit ========================================================== !/usr/bin/python import socket, time INFO NTNamingService.exe...
SAP Business One 2005-A License Manager - Remote Buffer Overflow
!/usr/bin/python import socket, time INFO NTNamingService.exe License Manager 2005 for SAP Business One 2005-A is vulnerable to a stack-based buffer overflow allowing for full system compromise by an unauthenticated user that has TCP/IP access to SAP's license service on TCP port 30000. Mike Arno...