195 matches found
Samba SPOOLSS smb_io_notify_option_type_data Request Buffer Overflow (CVE-2007-2446)
Samba is an open-source implementation of the file, print, and other network services suite known as SMB/CIFS Server Message Block/Common Internet File System. A heap-based buffer overflow vulnerability exists in the way Samba handles RPC messages. The vulnerability is due to a boundary error whi...
MS07-029 Microsoft DNS RPC Service extractQuotedChar() Overflow (SMB)
This module exploits a stack buffer overflow in the RPC interface of the Microsoft DNS service. The vulnerability is triggered when a long zone name parameter is supplied that contains escaped octal strings. This module is capable of bypassing NX/DEP protection on Windows 2003 SP1/SP2. This modul...
Microsoft DNS RPC Service - 'extractQuotedChar()' TCP Overflow (MS07-029) (Metasploit)
$Id: ms07029msdnszonename.rb 9929 2010-07-25 21:37:54Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Microsoft Message Queueing Service - Path Overflow (MS05-017) (Metasploit)
$Id: ms05017msmq.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
Novell Client Print Provider Buffer Overflow (CVE-2006-6114)
Microsoft Windows operating systems include a Print Spooler service, spoolsv.exe, which is started up with the system on most default installations. The print spooler service exports an Remote Procedure Call RPC interface to the server side of the spooler's Win32 API. A buffer overflow...
CVE-2006-5268
Unspecified vulnerability in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execute arbitrary code via vectors related to obtaining "administrative access to the RPC interface."...
CVE-2006-5269
Heap-based buffer overflow in an unspecified procedure in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execute arbitrary code via unknown vectors, probably related to an RPC interface...
CVE-2006-5269
CVE-2006-5269 describes a heap-based buffer overflow in an unspecified procedure of Trend Micro ServerProtect 5.7 and 5.58. The flaw is remote-accessible, likely related to an RPC interface, and can allow an attacker to execute arbitrary code. Affected products: Trend Micro ServerProtect 5.7 and ...
Immunity Canvas: MS08_059
Name| ms08059 ---|--- CVE| CVE-2008-3466 Exploit Pack| CANVAS Description| Microsoft Host Integration Server RPC Interface Vulnerability Notes| References: http://www.microsoft.com/technet/security/Bulletin/ms08-059.mspx CVE Name: CVE-2008-3466 VENDOR: Microsoft Notes: MSADV: MS08-059 Date public...
CVE-2008-4397
Directory traversal vulnerability in the RPC interface asdbapi.dll in CA ARCserve Backup formerly BrightStor ARCserve Backup r11.1 through r12.0 allows remote attackers to execute arbitrary commands via a .. dot dot in an RPC call with opnum 0x10A...
CA BrightStor ARCServe BackUp Message Engine Remote Command Injection Vulnerability
CA BrightStor ARCServe BackUp Message Engine Remote Command Injection Vulnerability by cocoruderfrankruderathotmail.com http://ruder.cdut.net Summary: CA BrightStor ARCServe BackUp is an overall data backup solution. The RPC interface of CA BrightStor ARCServe BackUp does not handle user's input...
CA BrightStor ARCserve Backup RPC Interface (asdbapi.dll) Traversal Arbitrary Command Execution
This host is running BrightStor ARCServe for Windows. The remote version of this software is affected by an arbitrary command execution vulnerability. By sending a specially crafted packet to the RPC server on TCP port 6504, an unauthenticated, remote attacker may be able to execute code on the...
cabrightstor-exec.txt
CA BrightStor ARCServe BackUp Message Engine Remote Command Injection Vulnerability by cocoruderfrankruderathotmail.com http://ruder.cdut.net Summary: CA BrightStor ARCServe BackUp is an overall data backup solution. The RPC interface of CA BrightStor ARCServe BackUp does not handle user's input...
CVE-2008-2104
The WebService in Bugzilla 3.1.3 allows remote authenticated users without canconfirm privileges to create NEW or ASSIGNED bug entries via a request to the XML-RPC interface, which bypasses the canconfirm check...
CVE-2008-2104
The WebService in Bugzilla 3.1.3 allows remote authenticated users without canconfirm privileges to create NEW or ASSIGNED bug entries via a request to the XML-RPC interface, which bypasses the canconfirm check...
CVE-2008-0962
Stack-based buffer overflow in the File System Manager for EMC DiskXtender 6.20.060 allows remote authenticated users to execute arbitrary code via a crafted request to the RPC interface...
Authentication flaw
EMV DiskXtender 6.20.060 has a hard-coded login and password, which allows remote attackers to bypass authentication via the RPC interface...
CVE-2008-0963
Format string vulnerability in EMC DiskXtender MediaStor 6.20.060 allows remote authenticated users to execute arbitrary code via a crafted message to the RPC interface...
Format string
Format string vulnerability in EMC DiskXtender MediaStor 6.20.060 allows remote authenticated users to execute arbitrary code via a crafted message to the RPC interface...
Stack overflow
Stack-based buffer overflow in the File System Manager for EMC DiskXtender 6.20.060 allows remote authenticated users to execute arbitrary code via a crafted request to the RPC interface...