73 matches found
Reflective Cross-Site Scripting Vulnerability in AliMom RAP
AliMom RAP is an omni-directional marketing platform. A reflective cross-site scripting vulnerability exists in AliMom RAP. The vulnerability is due to the account parameter fails to correctly filter and escape the data submitted by the user, the attacker through the construction of XSS statement...
Create your bases Rap - Dynamic Code Loading, External URLs, Unsafe deleting vulnerabilities
HackApp vulnerability scanner discovered that application Create your bases Rap published at the 'play' market has multiple vulnerabilities...
CVE-2015-1388
The "RAP console" feature in ArubaOS 5.x through 6.2.x, 6.3.x before 6.3.1.15, and 6.4.x before 6.4.2.4 on Aruba access points in Remote Access Point AP mode allows remote attackers to execute arbitrary commands via unspecified vectors...
CVE-2015-1388
The "RAP console" feature in ArubaOS 5.x through 6.2.x, 6.3.x before 6.3.1.15, and 6.4.x before 6.4.2.4 on Aruba access points in Remote Access Point AP mode allows remote attackers to execute arbitrary commands via unspecified vectors...
CVE-2014-4766
IBM Sametime Classic Meeting Server 8.0.x and 8.5.x allows remote attackers to obtain sensitive information by reading an exported Record and Playback RAP file...
CVE-2014-4766
IBM Sametime Classic Meeting Server 8.0.x and 8.5.x allows remote attackers to obtain sensitive information by reading an exported Record and Playback RAP file...
Radasm .rap file local buffer overflow vulnerability
No description provided by source. includestdio.h includewindows.h includegetopt.h void genrandomchar,const int; void printchar; unsigned int getFsizeFILE,char; void buildfilechar; int makebindshellunsigned short; void help; void printshell; DWORD SearchStreamconst char ,sizet,const char ,sizet;...
Radasm 2.2.1.6 - (.rap ) Local Buffer Overflow PoC
No description provided by source. /Radasm .rap file local buffer overflow POC I'll be back in a few hours with the exploit. The vuln is in the filename field. snip Files...1=AVP OVERFLOW... snip / includestdio.h void genrandomchar,const int; void printchar; unsigned int getFsizeFILE,char; void...
CVE-2013-4496
Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obtain access via brute-force ChangePasswordUser2 1 SAMR or 2 RAP attempts...
CVE-2012-1852
Heap-based buffer overflow in the Remote Administration Protocol RAP implementation in the LanmanWorkstation service in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via crafted RAP response packets, aka "Remote Administration Protocol Heap Overflow...
Heap overflow
Heap-based buffer overflow in the Remote Administration Protocol RAP implementation in the LanmanWorkstation service in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via crafted RAP response packets, aka "Remote Administration Protocol Heap Overflow...
Denial of service
The Remote Administration Protocol RAP implementation in the LanmanWorkstation service in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle RAP responses, which allows remote...
CVE-2012-1853
CVE-2012-1853 is a stack-based buffer overflow in the Remote Administration Protocol (RAP) handling of the LanmanWorkstation service on Microsoft Windows XP SP3. The vulnerability arises from the RAP response processing in the LAN Manager/Remote Administration Protocol stack, allowing a remote at...
CVE-2012-1852
The CVE-2012-1852 entry describes a heap-based buffer overflow in the Remote Administration Protocol (RAP) handling within the LanmanWorkstation service on Windows XP SP2/SP3. The flaw allows remote code execution when an attacker sends crafted RAP response packets, enabling arbitrary code execut...
CVE-2012-1852
Heap-based buffer overflow in the Remote Administration Protocol RAP implementation in the LanmanWorkstation service in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via crafted RAP response packets, aka "Remote Administration Protocol Heap Overflow...
CVE-2012-1853
Stack-based buffer overflow in the Remote Administration Protocol RAP implementation in the LanmanWorkstation service in Microsoft Windows XP SP3 allows remote attackers to execute arbitrary code via crafted RAP response packets, aka "Remote Administration Protocol Stack Overflow Vulnerability."...
Microsoft Windows Networking Components Remote Code Execution Vulnerabilities (2733594)
This host is missing a critical security update according to Microsoft Bulletin MS12-054. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Remote Administration Protocol Denial of Service (MS12-054; CVE-2012-1850)
A denial of service vulnerability has been reported in the Microsoft Remote Administration Protocol RAP. The vulnerability is due to an error in the Windows networking components while handling specially crafted Remote Administration Protocol RAP responses. A remote attacker can exploit this issu...
Microsoft Windows Remote Administration Protocol (RAP) Remote Heap Buffer Overflow Vulnerability
Description Microsoft Windows is prone to a remote heap-based buffer-overflow vulnerability because the library fails to perform adequate boundary-checks on user-supplied data. Attackers can exploit this issue to execute arbitrary code with SYSTEM-level privileges, which can result in the complet...
Aruba Networks multiple advisories: OS command injection in RAP web interface and 802.1X EAP-TLS user authentication bypass
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ADVISORY NUMBER 031912 Advisory 1: TITLE OS Command Injection Vulnerability in Aruba Remote Access Point Diagnostic Web Interface. SUMMARY An OS command injection vulnerability has been discovered in the Aruba Remote Access Point's Diagnostic Web...