43 matches found
Apache ActiveMQ 'CVE-2014-3576' Denial of Service Vulnerability - Windows
Apache ActiveMQ is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:activemq";...
Denial Of Service (DoS)
activemq-client is vulnerable to denial of service DoS attacks. The vulnerability is possible because it exposes a remote shutdown command in the ActiveMQConnection class, allowing the attacker to use it to launch the attack...
WinPower 4.9.0.4 - Local Privilege Escalation
WinPower 4.9.0.4 - Local Privilege Escalation // Exploit Title: WinPower V4.9.0.4 Privilege Escalation // Date: 29-11-2016 // Software Link: http://www.ups-software-download.com/ // Exploit Author: Kacper Szurek // Contact: http://twitter.com/KacperSzurek // Website: http://security.szurek.pl/ //...
WinPower 4.9.0.4 - Local Privilege Escalation
// Exploit Title: WinPower V4.9.0.4 Privilege Escalation // Date: 29-11-2016 // Software Link: http://www.ups-software-download.com/ // Exploit Author: Kacper Szurek // Contact: http://twitter.com/KacperSzurek // Website: http://security.szurek.pl/ // Category: local / 1. Description UPSmonitor...
Apache ActiveMQ Shutdown Command Denial of Service (CVE-2014-3576)
A denial of service vulnerability exists in Apache ActiveMQ. The vulnerability is due to missing authentication for the undocumented shutdown command. A remote, unauthenticated attacker may exploit this vulnerability by sending crafted packets to the server. Successful exploitation could lead to ...
[SECURITY] [DSA 3330-1] activemq security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3330-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 07, 2015 https://www.debian.org/security/faq -...
UBUNTU-CVE-2014-3576
The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service shutdown via a shutdown command...
Command injection
The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service shutdown via a shutdown command...
EUVD-2022-2254
The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service shutdown via a shutdown command...
grandstream-DoS.pl.txt
!/usr/bin/perl use IO::Socket; use Term::ANSIColor; U S A G E system "clear"; print "\nGrandstream BT101/BT102 DoS\n"; print "written by pierre kroma [email protected]\n\n"; if !$ARGV2 print qq Usage: perl grandstream-DoS.pl -s -r/-s = ;- = 5060 -r = 'reboot' the Grandstream BT 101/102 -s = 'shutdown...
CVE-2004-1586
Flash Messaging clients can ignore disconnecting commands such as "shutdown" from the Flash Messaging Server 5.2.0g rev 1.1.2, which could allow remote attackers to stay connected...
HP-UX PHCO_21534 : HPSBUX0005-113 Sec. Vulnerability with shutdown command (rev.1)
s700800 11.00 patch for shutdown1M : shutdown1M improperly handles input variables. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHCO21534. The text itself is copyright C Hewlett-Packard Development Company,...
HP-UX PHCO_21567 : HPSBUX0005-113 Sec. Vulnerability with shutdown command (rev.1)
s700800 11.04 VVOS patch for shutdown1M : shutdown1M improperly handles input variables. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHCO21567. The text itself is copyright C Hewlett-Packard Development...
HP-UX Security patch : PHCO_21566
The remote host is missing HP-UX Security Patch number PHCO21566 . Sec. Vulnerability with shutdown command %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid16549; scriptversion"1.7"...
HP-UX Security patch : PHCO_21574
The remote host is missing HP-UX Security Patch number PHCO21574 . Sec. Vulnerability with shutdown command %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid16547; scriptversion"1.7"...
CVE-2004-1586
Flash Messaging clients can ignore disconnecting commands such as "shutdown" from the Flash Messaging Server 5.2.0g rev 1.1.2, which could allow remote attackers to stay connected...
Mandrake Linux Security Advisory : usermode (MDKSA-2003:031-1)
The /usr/bin/shutdown command that comes with the usermode package can be executed by local users to shutdown all running processes and drop into a root shell. This command is not really needed to shutdown a system, so it has been removed and all users are encouraged to upgrade. Please note that...
MDKSA-2003:031 - Updated usermode packages remove insecure shutdown command
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandrake Linux Security Update Advisory Package name: usermode Advisory ID: MDKSA-2003:031 Date: March 12th, 2003 Affected versions: 8.1, 8.2, 9.0, Corporate Server 2.1, Multi Network Firewall 8.2 Problem Description: The /usr/bin/shutdown command tha...
CVE-2002-0294
Alcatel 4400 installs the /chetc/shutdown command with setgid privileges, which allows many different local users to shut down the system...
CVE-2002-0294
The CVE-2002-0294 entry concerns Alcatel 4400. The affected component is the /chetc/shutdown command which is installed with setgid privileges. The underlying issue is privilege escalation by assigning setgid to a program used for system shutdown, enabling local users to shut down the system (imp...