Lucene search
K

377 matches found

Tenable Nessus
Tenable Nessus
added 2009/02/19 12:0 a.m.14 views

Internet Gateway Device WAN Interface UPnP Access

Nessus was able to add 'port mappings' to the remote IGD router by sending a SOAP request to its external interface. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid35710; scriptversion"$Revision: 1.8 $"; scriptcvsdate"$Date: 2016/10/13 15:15:41 $";...

5.5AI score
Exploits0
NVD
NVD
added 2008/10/14 10:36 p.m.40 views

CVE-2008-4478

Multiple integer overflows in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.73 before 8.7.3.10 ftf1, allow remote attackers to execute arbitrary code via a crafted 1 Content-Length header in a SOAP request or 2 Netware Core Protocol opcode 0x0F message, which triggers a heap-based buffer...

10CVSS7.6AI score0.09821EPSS
Exploits1References14
Prion
Prion
added 2008/10/14 10:36 p.m.27 views

Integer overflow

Multiple integer overflows in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.73 before 8.7.3.10 ftf1, allow remote attackers to execute arbitrary code via a crafted 1 Content-Length header in a SOAP request or 2 Netware Core Protocol opcode 0x0F message, which triggers a heap-based buffer...

10CVSS8AI score0.09821EPSS
Exploits1References14Affected Software1
Prion
Prion
added 2008/10/14 10:36 p.m.25 views

Heap overflow

Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.7.3 before 8.7.3.10 ftf1, allows remote attackers to execute arbitrary code via a SOAP request with a long Accept-Language header...

10CVSS8.3AI score0.10331EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2008/10/14 10:0 p.m.46 views

CVE-2008-4478

Multiple integer overflows in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.73 before 8.7.3.10 ftf1, allow remote attackers to execute arbitrary code via a crafted 1 Content-Length header in a SOAP request or 2 Netware Core Protocol opcode 0x0F message, which triggers a heap-based buffer...

7.6AI score0.09821EPSS
Exploits1References14
Cvelist
Cvelist
added 2008/10/14 10:0 p.m.37 views

CVE-2008-4479

Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.7.3 before 8.7.3.10 ftf1, allows remote attackers to execute arbitrary code via a SOAP request with a long Accept-Language header...

7.9AI score0.10331EPSS
Exploits1References9
CVE
CVE
added 2008/10/14 10:0 p.m.64 views

CVE-2008-4479

Novell eDirectory is affected by CVE-2008-4479 due to a heap-based buffer overflow in dhost.exe when processing SOAP requests with an overly long Accept-Language header. A remote attacker can execute arbitrary code with SYSTEM/root privileges on affected installations. Vulnerable versions include...

10CVSS7.9AI score0.10331EPSS
Exploits1References9Affected Software1
Prion
Prion
added 2007/09/12 7:17 p.m.16 views

Code injection

Stampit Web uses guessable id values for online stamp purchases, which allows remote attackers to cause a denial of service stamp invalidation via a SOAP request with an id value for a stamp that has not yet been printed...

5CVSS7.2AI score0.01653EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2007/09/12 7:17 p.m.6 views

CVE-2007-3871

Stampit Web uses guessable id values for online stamp purchases, which allows remote attackers to cause a denial of service stamp invalidation via a SOAP request with an id value for a stamp that has not yet been printed...

5CVSS6.7AI score0.01653EPSS
Exploits0References6
Cvelist
Cvelist
added 2007/09/12 7:0 p.m.16 views

CVE-2007-3871

Stampit Web uses guessable id values for online stamp purchases, which allows remote attackers to cause a denial of service stamp invalidation via a SOAP request with an id value for a stamp that has not yet been printed...

6.7AI score0.01653EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2007/05/10 12:8 p.m.4 views

php make_http_soap_request flaw

Buffer overflow in the makehttpsoaprequest function in PHP before 5.2.2 has unknown impact and remote attack vectors, possibly related to "/" slash characters...

5.1CVSS5.9AI score0.02303EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2007/05/08 3:45 p.m.5 views

php make_http_soap_request flaw

Buffer overflow in the makehttpsoaprequest function in PHP before 5.2.2 has unknown impact and remote attack vectors, possibly related to "/" slash characters...

5.1CVSS5.9AI score0.02303EPSS
Exploits0References4
Prion
Prion
added 2006/03/16 1:2 a.m.18 views

Command injection

Adobe Graphics Server 2.0 and 2.1 formerly AlterCast and Adobe Document Server ADS 5.0 and 6.0 allows local users to read files with certain extensions or overwrite arbitrary files and execute code via a crafted SOAP request to the AlterCast web service in which the request uses the 1 saveContent...

2.6CVSS6.9AI score0.0075EPSS
Exploits0References10Affected Software2
NVD
NVD
added 2006/03/16 1:2 a.m.18 views

CVE-2006-1182

Adobe Graphics Server 2.0 and 2.1 formerly AlterCast and Adobe Document Server ADS 5.0 and 6.0 allows local users to read files with certain extensions or overwrite arbitrary files and execute code via a crafted SOAP request to the AlterCast web service in which the request uses the 1 saveContent...

2.6CVSS6.7AI score0.0075EPSS
Exploits0References10
Cvelist
Cvelist
added 2006/03/16 1:0 a.m.25 views

CVE-2006-1182

Adobe Graphics Server 2.0 and 2.1 formerly AlterCast and Adobe Document Server ADS 5.0 and 6.0 allows local users to read files with certain extensions or overwrite arbitrary files and execute code via a crafted SOAP request to the AlterCast web service in which the request uses the 1 saveContent...

6.6AI score0.0075EPSS
Exploits0References10
CVE
CVE
added 2006/03/16 1:0 a.m.59 views

CVE-2006-1182

Adobe Graphics Server 2.x and Adobe Document Server (ADS) 5.x/6.x are affected by CVE-2006-1182. A crafted SOAP request to the AlterCast web service can invoke saveContent, saveOptimized ADS, or loadContent commands to read files with certain extensions, overwrite arbitrary files, or execute code...

2.6CVSS6.6AI score0.0075EPSS
Exploits0References10Affected Software2
exploitpack
exploitpack
added 2003/04/03 12:0 a.m.16 views

NETGEAR FM114P ProSafe Wireless Router - Rule Bypass

NETGEAR FM114P ProSafe Wireless Router - Rule Bypass source: https://www.securityfocus.com/bid/7270/info The Netgear FM114P allows certain ports to be blocked, both for external users attempting to enter the local network and for local users connecting to the WAN. If Remote Access and Universal...

0.2AI score
Exploits0
Rows per page
Query Builder