80 matches found
enisei-stm.ru XSS vulnerability
Open Bug Bounty ID: OBB-716991 Description| Value ---|--- Affected Website:| enisei-stm.ru Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden...
sip.stm.jus.br XSS vulnerability
Open Bug Bounty ID: OBB-668992 Description| Value ---|--- Affected Website:| sip.stm.jus.br Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
openSUSE Security Update : libopenmpt (openSUSE-2018-742)
This update for libopenmpt to version 0.3.9 fixes the following issues : These security issues were fixed : - CVE-2018-11710: Prevent write near address 0 in out-of-memory situations when reading AMS files bsc1095644 - CVE-2018-10017: Preven out-of-bounds memory read with IT/ITP/MO3 files...
Bitdefender Internet Security RAR STM Record Integer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...
stm-stm.france24.com XSS vulnerability
Vulnerable URL: http://stm-stm.france24.com/prixdecouvertesrfi/2012/formulairev5/index.php?lang="'--! Details: Description| Value ---|--- Patched:| Yes, at 28.07.2017 Latest check for patch:| 28.07.2017 21:26 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unkno...
Intrasrv Simple Web Server 1.0 - SEH Based Remote Code Execution
No description provided by source. Exploit Title: Intrasrv Simple Web Server 1.0 SEH based Remote Code Execution BOF Date: 29.05.2013 Exploit Author: xisone@STM Solutions Vendor Homepage: http://www.leighb.com/intrasrv.htm Software Link: http://www.leighb.com/intrasrv.zip Version: 1.0 Tested on:...
Microsoft IIS 4.0 - Buffer Overflow Vulnerability (4)
No description provided by source. source: http://www.securityfocus.com/bid/307/info Microsoft IIS reported prone to a buffer overflow vulnerability in the way IIS handles requests for several file types that require server side processing. This vulnerability may allow a remote attacker to execut...
Microsoft IIS 4.0 - Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/307/info Microsoft IIS reported prone to a buffer overflow vulnerability in the way IIS handles requests for several file types that require server side processing. This vulnerability may allow a remote attacker to execut...
BOINC Manager (Seti@home) 7.0.64 - Field Buffer Overflow (SEH)
Exploit Title: BOINC Manager 7.0.64 Field stack based buffer overflow Date: 26.05.2013 Exploit Author: xisone@STM Solutions Vendor Homepage: http://boinc.berkeley.edu/ Software Link: http://boinc.berkeley.edu/dl/boinc7.0.64windowsintelx86.exe Version: 7.0.64 for Windows Tested on: Windows XP SP3...
Intrasrv Simple Web Server 1.0 - Remote Code Execution (SEH)
Exploit Title: Intrasrv Simple Web Server 1.0 SEH based Remote Code Execution BOF Date: 29.05.2013 Exploit Author: xisone@STM Solutions Vendor Homepage: http://www.leighb.com/intrasrv.htm Software Link: http://www.leighb.com/intrasrv.zip Version: 1.0 Tested on: Windows XP SP3 Eng...
Ophcrack 3.5.0 - Code Execution Local Buffer Overflow
Ophcrack 3.5.0 - Code Execution Local Buffer Overflow Exploit Title: ophcrack v3.5.0 - Local Code Execution BOF Date: 21.05.2013 Exploit Author: xisone@STM Solutions Vendor Homepage: http://ophcrack.sourceforge.net/ Software Link:...
Mikrotik Syslog Server for Windows 1.15 - Denial of Service (Metasploit)
Exploit Title: Mikrotik Syslog Server for Windows - remote BOF DOS Date: 19.04.2013 Exploit Author: xisone@STM Solutions Vendor Homepage: www.mikrotik.com Software Link: http://www.mikrotik.com/download/MTSyslog.exe Version: 1.15 most recent version 19.04.2013 Tested on: Windows XP SP3, Windows 7...
CentOS Update for mikmod CESA-2010:0720 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for libmikmod FEDORA-2010-13702
Check for the Version of libmikmod OpenVAS Vulnerability Test Fedora Update for libmikmod FEDORA-2010-13702 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
[SECURITY] Fedora 14 Update: libmikmod-3.2.0-11.beta2.fc14
libmikmod is a library used by the mikmod MOD music file player for UNIX-like systems. Supported file formats include MOD, STM, S3M, MTM, XM, ULT and IT...
[SECURITY] Fedora 11 Update: libmikmod-3.2.0-5.beta2.fc11
libmikmod is a library used by the mikmod MOD music file player for UNIX-like systems. Supported file formats include MOD, STM, S3M, MTM, XM, ULT and IT...
[security bulletin] HPSBUX02115 SSRT061077 rev.1 - HP-UX running Support Tools Manager (xstm, cstm, stm) Local Denial of Service (DoS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c00657001 Version: 1 HPSBUX02115 SSRT061077 rev.1 - HP-UX running Support Tools Manager xstm, cstm, stm Local Denial of Service DoS NOTICE: The information in this Security Bulletin should be acte...
CVE-2001-0079
CVE-2001-0079 affects HP-UX Support Tools Manager (STM) A.22.00. A local user can exploit a symlink race to overwrite arbitrary files by targeting the tool_stat.txt log file, enabling local file modification. The entry explicitly lists a local attack vector with a partial integrity impact and no ...
Дырка в STM из HP-UX
Сождается лог-файл без проверки символьных линков...
CVE-1999-0874
CVE-1999-0874 maps to a buffer overflow in IIS 4.0’s ISAPI processing of HTR/IDC/STM files (ISM.DLL). Public sources show a remote overflow that can cause denial of service and, in several references, the potential for remote code execution on affected Windows NT systems (MS02-018/Microsoft MS99-...