58 matches found
Spoofing in Terminal Server Agent
A spoofing vulnerability exists in Terminal Server Agent ref PAN-67269 / CVE-2017-5328. Terminal Server Agent contains a vulnerability whereby a user can spoof the identity of another authenticated user. This issue affects Terminal Server Agent 6.0; Terminal Server Agent 7.0.6 and earlier Work...
Spoofing in Terminal Server Agent
A spoofing vulnerability exists in Terminal Server Agent ref PAN-67269 / CVE-2017-5328. Terminal Server Agent contains a vulnerability whereby a user can spoof the identity of another authenticated user. This issue affects Terminal Server Agent 6.0; Terminal Server Agent 7.0.6 and earlier Work...
Local Privilege Escalation in Terminal Server Agent
A local privilege escalation vulnerability exists in Terminal Server Agent ref PAN-67756 / CVE-2017-5329. Terminal Server Agent contains a vulnerability that may allow for an out of bounds write. Successful exploitation of this issue may allow an attacker to elevate their permissions. This issue...
Local Privilege Escalation in Terminal Server Agent
A local privilege escalation vulnerability exists in Terminal Server Agent ref PAN-67756 / CVE-2017-5329. Terminal Server Agent contains a vulnerability that may allow for an out of bounds write. Successful exploitation of this issue may allow an attacker to elevate their permissions. This issue...
CVE-2016-6330
The server in Red Hat JBoss Operations Network JON, when SSL authentication is not configured for JON server / agent communication, allows remote attackers to execute arbitrary code via a crafted HTTP request, related to message deserialization. NOTE: this vulnerability exists because of an...
BMC Software BladeLogic Server Automation Suite RSCD Agent Password Reset Vulnerability
BMC Software BladeLogic Server Automation Suite is a solution for managing the lifecycle of servers and applications from BMC Software, USA. A password reset vulnerability exists in the RSCD Agent of the BMC Software BladeLogic Server Automation Suite for Linux and Unix platforms. A remote attack...
ovs-agent-version NSE Script
Detects the version of an Oracle Virtual Server Agent by fingerprinting responses to an HTTP GET request and an XML-RPC method call. Version 2.2 of Virtual Server Agent returns a distinctive string in response to an HTTP GET request. However versions 3.0 and 3.0.1 return a generic response that...
[Onapsis Security Advisory 2010-009] Oracle Virtual Server Agent Remote Command Execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security Advisory 2010-0009 : Oracle Virtual Server Agent Remote Command Execution This advisory can be downloaded in PDF format from http://www.onapsis.com/research.html. By downloading this advisory from the Onapsis Resource Center, you will...
Oracle VM Server Virtual Server Agent Command Injection
$Id: oraclevmagentutl.rb 10821 2010-10-25 20:58:49Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Novell ZENworks 6.5 - Desktop/Server Management Overflow (Metasploit)
$Id: zenworksdesktopagent.rb 9929 2010-07-25 21:37:54Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
CVE-2008-2794
Unspecified vulnerability in the GUI in Symantec Altiris Notification Server Agent 6.x before 6.0 SP3 R8 allows local users to gain privileges via unknown attack vectors...
Code injection
Unspecified vulnerability in the GUI in Symantec Altiris Notification Server Agent 6.x before 6.0 SP3 R8 allows local users to gain privileges via unknown attack vectors...
Altiris Notification Server Agent GUI Local Privilege Escalation (KB 39159)
Altiris Notification Server Agent, also known as Altiris Agent, is installed on the remote host, allowing it to be managed by an Altiris Notification Server. The installed version of the Altiris Agent is reportedly vulnerable to a Shatter Attack involving its GUI that can allow local users to...
Symantec Altiris Notification Server Agent GUI Local Elevation of Privilege
SUMMARY A non-privileged user can leverage the Symantec Altiris Notification Server Agent Graphical User Interface GUI to gain privileged access to the system. Severity Medium Remote Access adjacent network | No ---|--- Local Access | Yes Authentication Required | Yes Exploit available | No...
CVE-2008-2158
Multiple stack-based buffer overflows in the Command Line Interface process in the Server Agent in EMC AlphaStor 3.1 SP1 for Windows allow remote attackers to execute arbitrary code via crafted TCP packets to port 41025...
CVE-2008-2158
Multiple stack-based buffer overflows in the Command Line Interface process in the Server Agent in EMC AlphaStor 3.1 SP1 for Windows allow remote attackers to execute arbitrary code via crafted TCP packets to port 41025...
EMC AlphaStor multiple security vulnerabilities
Library Manager TCP/3500 code execution, Server Agent TCP/41025 multiple buffer overflows...
Altiris Notification Server Agent Local Privilege Escalation Vulnerabilities
Altiris Notification Server Agent, also known as Altiris Agent, is installed on the remote host, allowing it to be managed by an Altiris Notification Server. The installed version of the Altiris Agent is reportedly vulnerable to numerous Shatter Attacks that can allow local users to escalate thei...