12 matches found
Unspecified Vulnerability in ForeScout SecureConnector
ForeScout SecureConnector is a network security software from US-based ForeScout that authenticates machines trying to join a network. A security vulnerability exists in ForeScout SecureConnector, which can be exploited by an attacker to cause a buffer overflow and overwrite a stack cookie,...
CVE-2021-34375
Trusty contains a vulnerability in all trusted applications TAs where the stack cookie was not randomized, which might result in stack-based buffer overflow, leading to denial of service, escalation of privileges, and information disclosure...
Rufus 3.0 / 3.1 Privilege Escalation
Hi @ll, like their predecessors, the recently 2018-05-29, 2018-06-19 published versions 3.0 and 3.1 of "Rufus" are riddled with bloody beginners errors, which ALL allow arbitrary code execution WITH escalation of privilege, in MULTIPLE ways. JFTR: to support and ease further attacks, this crap is...
DameWare mini remote control Vulnerability CVE-2 0 1 6-2 3 4 5: let you play with remote controller-vulnerability warning-the black bar safety net
! In doing a security assessment, we often encounter some allow an administrator on the network remote management system software. Although very convenient, but a variety of package leads to the remote access system, there are some security risks. In this article, we will detail the way in a plac...
MEDCIN engine of the exploitability of the vulnerability details-vulnerability warning-the black bar safety net
! Science: the MEDCIN engine is a service to doctors and nurses electronic medical records system. A few months ago, I was in the MEDCIN engine to older versions of the safety assessment found a loophole. So I to the Supplier a report of the vulnerabilities and then repair, after viewing the...
UBUNTU-CVE-2015-3027
Clang in LLVM, as used in Apple Xcode before 6.3, performs incorrect register allocation in a way that triggers stack storage for stack cookie pointers, which might allow context-dependent attackers to bypass a stack-guard protection mechanism via crafted input to an affected C program...
DameWare Support Control fgets Vulnerability
Stack-based buffer overflow in the “Add from text file” feature in the DameWare Exporter tool DWExporter.exe in DameWare Remote Support 10.0.0.372, 9.0.1.247, and earlier allows user-assisted attackers to execute arbitrary code via unspecified vectors. Recent assessments: wchen-r7 at September 12...
Nginx 1.3.91.4.0 (x86) - Brute Force
Nginx 1.3.91.4.0 x86 - Brute Force nginx 1.3.9/1.4.0 x86 brute force remote exploit copyright c 2013 kingcope ---------------------------- fix for internet exploitation, set MTU: ifconfig mtu 60000 up !!! WARNING !!! this exploit is unlikely to succeed when used against remote internet hosts. the...
Nagios Core 3.4.3 Buffer Overflow Vulnerability
Nagios Core version 3.4.3 suffers from a stack-based buffer overflow vulnerability in the history.cgi web interface. history.cgi is vulnerable to a buffer overflow due to the use of sprintf with user supplied data that has not been restricted in size. This vulnerability does not appear to be...
HP OpenView Network Node Manager ovwebsnmpsrv.exe main BOF
Exploit for windows platform in category remote exploits $Id: hpnnmovwebsnmpsrvmain.rb 12097 2011-03-23 15:45:48Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more informati...
HP OpenView Network Node Manager ovwebsnmpsrv.exe ovutil Buffer Overflow
This module exploits a stack buffer overflow in HP OpenView Network Node Manager 7.53 prior to NNM01203. By specifying a long 'arg' parameter when executing the 'jovgraph.exe' CGI program, an attacker can cause a stack-based buffer overflow and execute arbitrary code. This vulnerability is...
HP NNM CGI webappmon.exe OvJavaLocale Buffer Overflow
This module exploits a stack buffer overflow in HP OpenView Network Node Manager 7.53. By sending a request containing a cookie longer than 5120 bytes, an attacker can overflow a stack buffer and execute arbitrary code. The vulnerable code is within the OvWwwDebug function. The static-sized stack...