47 matches found
CVE-2015-5011
IBM WebSphere Message Broker 8 before 8.0.0.6 and Integration Bus 9 before 9.0.0.4 do not check authorization for MQSISTARTMSGFLOW and MQSISTOPMSGFLOW commands, which allows local users to bypass intended access restrictions, and start or stop a service, by issuing a command...
Multiple Cross-Site Request Forgery Vulnerabilities in Landesk Management Suite
LANDESK Management Suite is a set of IT systems management solutions from the U.S. company LANDESK. A cross-site request forgery vulnerability exists in LANDESK Management Suite 9, which allows remote attackers to construct malicious URIs, trick users into parsing them, and perform malicious...
Siemens Simatic S7-1200 CPU START/STOP Module
No description provided by source...
Siemens Simatic S7-300/400 CPU START/STOP Module
No description provided by source...
Siemens Simatic S7-1200 - CPU STARTSTOP Module (Metasploit)
Siemens Simatic S7-1200 - CPU STARTSTOP Module Metasploit Exploit Title: Siemens Simatic S7 1200 CPU command module Date: 7-13-2012 Exploit Author: Dillon Beresford Vendor Homepage: http://www.siemens.com/ Tested on: Siemens Simatic S7-1200 PLC CVE : None require 'msf/core' class Metasploit3...
CVE-2011-1402
Mahara before 1.3.6 allows remote authenticated users to bypass intended access restrictions, and suspend a user account, edit a view, visit a view, edit a plan artefact, read a plans block, read a plan artefact, edit a blog, read a blog block, read a blog artefact, or access a block, via a reque...
Oracle WebLogic Server Node Manager Detection
The remote service is Node Manager, a utility included with Oracle WebLogic Server and used to remotely start and stop Administration Server and Managed Server instances. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description...