28 matches found
CVE-2023-31429
Brocade Fabric OS before Brocade Fabric OS 9.1.1c, 9.2.0 contains a vulnerability when using various commands such as “chassisdistribute”, “reboot”, “rasman”, errmoduleshow, errfilterset, hassiscfgperrthreshold, supportshowcfgdisable and supportshowcfgenable commands that can cause the content of...
CVE-1999-0886
The security descriptor for RASMAN allows users to point to an alternate location via the Windows NT Service Control Manager...
Patch Tuesday, October 2025 ‘End of 10’ Edition
Microsoft today released software updates to plug a whopping 172 security holes in its Windows operating systems, including at least two vulnerabilities that are already being actively exploited. October's Patch Tuesday also marks the final month that Microsoft will ship security updates for...
Exploit for Link Following in Microsoft
CVE-2023-29343 This is PoC for arbitrary file write bug in Sy...
Microsoft Windows NT 4.0/SP1/SP2/SP3/SP4/SP5 RASMAN Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/645/info Any authenticated NT user ie domain user can modify the pathname for the RASMAN binary in the Registry. The next time the RAS Service is started, the trojan service referenced by the RASMAN pathname will be...
Microsoft RRAS Service RASMAN Registry Overflow
No description provided by source. $Id: ms06025rasmansreg.rb 10150 2010-08-25 20:55:37Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...
Microsoft RRAS Service RASMAN Registry Overflow
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Microsoft RR...
Microsoft Windows RASMAN服务栈溢出漏洞(MS06-025)
Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows远程访问连接管理器RASMAN存在可远程调用的RPC接口,其中RPC接口 RasRpcSubmitRequest存在若干安全漏洞,远程攻击者可能利用此漏洞在服务器上执行任意指令。 函数RasRpcSubmitRequest及其子函数对作为参数的函数指针的有效性检查不足;某些子函数对参数的处理存在缓冲区溢出漏洞;这些漏洞都可能被攻击者利用在服务器上执行任意指令,从而控制系统。 Microsoft Windows XP SP2 Microsoft Windows XP SP1 Microso...
Windows RASMAN registry corruption vulnerability
Added: 07/28/2006 CVE: CVE-2006-2371 BID: 18358 OSVDB: 26436 Background The Routing and Remote Access Service RRAS allows a Windows computer to act as a router, dial-up access server, VPN server, or network address translator. The Remote Access Connection Manager RASMAN service handles the detail...
Windows RASMAN registry corruption vulnerability
Added: 07/28/2006 CVE: CVE-2006-2371 BID: 18358 OSVDB: 26436 Background The Routing and Remote Access Service RRAS allows a Windows computer to act as a router, dial-up access server, VPN server, or network address translator. The Remote Access Connection Manager RASMAN service handles the detail...
Windows RASMAN registry corruption vulnerability
Added: 07/28/2006 CVE: CVE-2006-2371 BID: 18358 OSVDB: 26436 Background The Routing and Remote Access Service RRAS allows a Windows computer to act as a router, dial-up access server, VPN server, or network address translator. The Remote Access Connection Manager RASMAN service handles the detail...
Windows RASMAN registry corruption vulnerability
Added: 07/28/2006 CVE: CVE-2006-2371 BID: 18358 OSVDB: 26436 Background The Routing and Remote Access Service RRAS allows a Windows computer to act as a router, dial-up access server, VPN server, or network address translator. The Remote Access Connection Manager RASMAN service handles the detail...
Microsoft Windows RASMAN Service Memory Corruption (MS06-025; CVE-2006-1314)
RASMAN Remote Access Service Manager is a service that handles the details of establishing the connection to the remote server. This service also provides the client with status information during the connection operation. A vulnerability exists in RASMAN service that would allow an attacker who...
Microsoft Windows - RRAS RASMAN Registry Stack Overflow (MS06-025) (Metasploit)
This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...
High Risk Vulnerability in Microsoft Windows RASMAN Service
Peter Winter-Smith of NGSSoftware has discovered a high risk vulnerability in the Microsoft Windows Remote Access Connection Manager RASMAN service which under certain versions of the OS can allow a remote, anonymous attacker to gain complete control over a vulnerable system. The vulnerability is...
Immunity Canvas: MS06_025
Name| ms06025 ---|--- CVE| CVE-2006-2371 Exploit Pack| CANVAS Description| RasMan RPC Server Signedness Bug Notes| CVE Name: CVE-2006-2371 VENDOR: Microsoft Notes: If you choose the wrong version to attack, RasMan may stop responding with MSRPC Pipe Not Available errors, and will most likely not...
CVE-2006-2371
Buffer overflow in the Remote Access Connection Manager service RASMAN service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows remote unauthenticated or authenticated attackers to execute arbitrary code via certain crafted "RPC related requests," that lead to...
Buffer overflow
Buffer overflow in the Remote Access Connection Manager service RASMAN service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows remote unauthenticated or authenticated attackers to execute arbitrary code via certain crafted "RPC related requests," that lead to...
CVE-2006-2371
The CVE-2006-2371 issue is a buffer overflow in the Windows RRAS RASMAN RPC server (RASMAN) that affects Windows 2000 SP4, XP SP1/SP2, and Server 2003 SP1 and earlier. A remote attacker can trigger arbitrary code execution via crafted RPC-related requests, resulting in registry corruption and sta...
CVE-2006-2371
Buffer overflow in the Remote Access Connection Manager service RASMAN service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows remote unauthenticated or authenticated attackers to execute arbitrary code via certain crafted "RPC related requests," that lead to...