79 matches found
SUSE-SU-2025:02476-1 Security update 4.3.16 for Multi-Linux Manager Server
This update fixes the following issues: release-notes-susemanager: - Update to SUSE Manager 4.3.16 Important Salt Security Update Added support for SUSE Linux Enterprise 15 SP7 as a client using the Salt Bundle CVE Fixed CVE-2025-23392, CVE-2025-23393, CVE-2024-38824, CVE-2025-22239 CVE-2025-2223...
RHSA-2021:1199 Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP7 security update
Bulletin has no description...
Security Bulletin: Vulnerability in Log4j affects IBM Integrated Analytics System [CVE-2022-23305]
Summary Redhat provided Log4j is used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable CVE-2022-23305 Vulnerability Details CVEID:CVE-2022-23305 DESCRIPTION: Apache Log4j is vulnerable to SQL injection. A remote attacker could send specially-crafted...
CVE-2022-3379
Horner Automation's Cscape version 9.90 SP7 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by writing outside the memory buffer...
RHEL 7 : Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP7 (RHSA-2021:1199)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1199 advisory. This release adds the new Apache HTTP Server 2.4.37 Service Pack 7 packages that are part of the JBoss Core Services offering. This release...
CVE-2017-3195
Commvault Edge Communication Service cvd prior to version 11 SP7 or version 11 SP6 with hotfix 590 is prone to a stack-based buffer overflow vulnerability that could lead to arbitrary code execution with administrative privileges...
Novell NCP Pre-Auth Remote Root Exploit
No description provided by source. In the interest of full-disclosure, here is a remote exploit for the vulnerability found by David Klein: Demonstration Novell NCP Pre-Auth Remote Stack Buffer Overflow Connecting to host 127.0.0.1... Connected! Sending message 1 23 bytes -- 44 6d 64 54 00 00 00 ...
BigAnt IM Server DDNF username Field Remote Overflow
Added: 04/22/2013 BID: 58998 OSVDB: 92239 Background BigAnt Messenger Server offers secure instant messaging, file transfer, voip, video chat, web conferencing and more. Problem BigAnt IM Server is vulnerable to buffer overflow in the expsrv.dll library as a result of improper validation of...
BigAnt Server 2 SCH And DUPF Buffer Overflow
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'BigAnt Server 2 SCH And DUPF Buffer...
Novell NCP Pre-Auth Remote Stack Buffer Overflow
/ Novell NCP Pre-Auth Remote Root Exploit Written by Gary Nilson 11-17-2013 Overview US-CERT/NIST CVES:CVE-2012-0432: Stack-based buffer overflow in the Novell NCP implementation in NetIQ eDirectory 8.8.7.x before 8.8.7.2 allows remote attackers to have an unspecified impact via unknown vectors...
Oracle WebLogic Server 10.3.3 - Encoded URL
source: https://www.securityfocus.com/bid/41620/info Oracle WebLogic Server is prone to a remote vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. For an exploit to succeed, the attacker must have 'Plugins for Apache, Sun and IIS web servers' privileges. This vulnerabili...
Novell NetWare LSASS CIFS.NLM Driver Stack Overflow
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Novell NetWare...
Wind noise 4.0 SP7 getshell 0day-vulnerability warning-the black bar safety net
Source: Found by: bloodsword, a bink, reproduced please disregard Affected versions:=4.0 sp7, the previous version didn't go to see, estimation also can day. Use Conditions, opens a file upload function, iis6 environment. Vulnerability Description: Create a directory somewhere, name the filter on...
Novell NetWare LSASS CIFS.NLM Driver Stack Buffer Overflow
This module exploits a stack buffer overflow in the NetWare CIFS.NLM driver. Since the driver runs in the kernel space, a failed exploit attempt can cause the OS to reboot. This module requires Metasploit: https://metasploit.com/download Current source:...
SAP NetWeaver和Web Dynpro Java跨站脚本漏洞
SAP Web Dynpro Java是一款Java的WEB应用服务程序。 SAP Web Dynpro Java不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞进行跨站脚本攻击,获得敏感信息。 NetWeaver Application包含的User-Agent-Header内容在服务器应答时没有采用正确的编码,伪造User-Agent-Header可触发跨站脚本问题,构建恶意WEB页,诱使用户访问,可导致获得目标用户敏感信息。 SAP NetWeaver Nw04s SP9 SAP NetWeaver Nw04s SP8 SAP NetWeaver Nw04s SP7 SAP...
Novell NetWare 6.5 SP2-SP7 LSASS CIFS.NLM Overflow
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...
Novell NetWare 6.5 SP2-SP7 - LSASS CIFS.NLM Overflow (Metasploit)
Novell NetWare 6.5 SP2-SP7 - LSASS CIFS.NLM Overflow Metasploit This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Novell NetWare 6.5 SP2-SP7 - LSASS CIFS.NLM Overflow (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Novell NetWare...
SunOne Web Proxy < 3.6 SP7 Unspecified Remote Buffer Overflows
Binary data 2845.prm...