4113 matches found
Comodo Internet Security < 3.9 RAR Archive Scan Evasion
The version of Comodo Internet Security installed on the remote Windows host is earlier than 3.9. As such, it may be possible for certain RAR files to evade detection from the scanning engine. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid58230; scriptversion"1.7";...
[CVE-2012-2273] Comodo Internet Security <5.10 BSOD (Win7 x64)
affected software Comodo Internet Security, until 5.9 description BSOD under Windows 7 x64 if a 32b PE with a kernel ImageBase is executed. such files are very unusual, but work perfectly if the PE contains relocations, as shown at http://pe.corkami.comImageBase and http://pe.corkami.comrelocatio...
Epson EventManager 'x-protocol-version' Denial of Service Vulnerability
This host is running Epson EventManager and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: secpodepsoneventmanagerdosvuln.nasl 5950 2017-04-13 09:02:06Z teissa $ Epson EventManager 'x-protocol-version' Denial of Service Vulnerability Authors: Sooraj KS Copyright:...
Scada Modbus Points List Scan
...
Ruby On Rails Attributes Mass Assignment Scanner
This module scans Ruby On Rails sites for models with attributes not protected by attrprotected or attraccessible. After attempting to assign a non-existent field, the default rails with activerecord setup will raise an ActiveRecord::UnknownAttributeError exception, and reply with HTTP code 500...
Epson EventManager 2.50 - Denial of Service
Luigi Auriemma Application: Epson EventManager http://www.epson.com Versions: 53 PUSH EBX 01639680 |. 8B5C24 24 MOV EBX,DWORD PTR SS:ESP+24 01639684 |. 53 PUSH EBX 01639685 |. 50 PUSH EAX 01639686 |. E8 25F8FFFF CALL epnsm.01638EB0 ; parse "x-protocol-version"...
VMware ESXi scan initialization
This VT initiates an authenticated scan against the VMware ESXi SOAP API via HTTP. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
Want lunch? Palm it over
Fed up with using swipe cards and PINs for their students’ lunch payments, a school board district in Clearwater, Fla. recently partnered with microelectronic company Fujitsu to use palm vein readers for nearly half of their 102,000 students. Pinellas County School Board District spent $120,000 t...
eap-info NSE Script
Enumerates the authentication methods offered by an EAP Extensible Authentication Protocol authenticator for a given identity or for the anonymous identity if no argument is passed. Script Arguments eap-info.identity Identity to use for the first step of the authentication methods if omitted...
HITB2011KUL - SAPocalypse Now, CrushingSAPs J2EE
Document Title: =============== HITB2011KUL - SAPocalypse Now, CrushingSAPs J2EE References: =========== View: http://www.youtube.com/watch?v=bu6JnwqhRV0 Release Date: ============= 2012-03-05 Vulnerability Laboratory ID VL-ID: ==================================== 469 Discovery Status:...
open redirect in flushcache.action
A skipfish scan of confluence found that flushcache.action is vulnerable to 'open redirect' as the returlUrl seems to send up in the Location HTTP header on a 302 redirect response. Note the token parameter in the here is an example attack using the flaw...
Facebook Game - Zynga's Vampire Wars Detected (deprecated)
Binary data 6373.prm...
Tenable Release Nessus 5.0 vulnerability scanner
Tenable Release Nessus 5.0 vulnerability scanner Tenable Network Security announced Nessus 5.0 vulnerability and configuration assessment solution for enterprises and security professionals. Nessus version 5.0 introduces key features and improvements, separated into the four major phases of the...
Oracle WebCenter Content Detection
Oracle WebCenter Content formerly known as Enterprise Content Management, a web-based content management system, is running on the remote host. Note that for accurate results, you may need to enable the Oracle WebCenter Content port by default 16200 in your Nessus scan. C Tenable Network Security...
KedaiScript Shell Upload
Exploit Title: KedaiScript Remote Upload Shell Vulnerability DDate: 10-02-2012 Author: Netrondoank Software Link: www.kedaiscript.com Version: mlm10v21,mmgbinary,portal Tested on: windows 7 Contact: [email protected] E X P L O I T 1. Login As Demo...
SquirrelMail: Mail Fetch plugin -- port-scans via non-standard POP3 server ports
The Mail Fetch plugin in SquirrelMail 1.4.20 and earlier allows remote authenticated users to bypass firewall restrictions and use SquirrelMail as a proxy to scan internal networks via a modified POP3 port number...
Zulu - Zscaler Malware Scanning Service
Zulu - Zscaler Malware Scanning Service Zscaler has launched a new freE online service called Zulu that can assess the security risk associated with URLs by analyzing the content they point to, as well as the reputation of their corresponding domain names and IP addresses. Zulu allows security...
CVE-2011-4771
CVE-2011-4771 affects the Android app Scan to PDF Free (com.scan.to.pdf.trial) version 2.0.4. The vulnerability is described as an improper data protection flaw that lets remote attackers read or modify scanned files and associated Google account via a crafted application. No concrete remediation...
NAT-PMP External Address Scanner
Scan NAT devices for their external address using NAT-PMP This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NAT-PMP External Address Scanner', 'Description' = 'Scan NAT devices for their external...
FTP Attack - Passive Port Scan
Binary data 6216.prm...