MagniComp SysInfo Detection (Linux/Unix SSH Login)

This script finds the installed version of MagniComp SysInfo on Linux. The script logs in via ssh, searches for binary file SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

MagniComp SysInfo Privilege Escalation Vulnerability - Linux

MagniComp SysInfo is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

MagniComp SysInfo Information Disclosure Vulnerability - Linux

MagniComp SysInfo is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

MagniComp SysInfo Information Disclosure Vulnerability - Mac OS X

MagniComp SysInfo is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

MagniComp SysInfo Installed (Linux/UNIX)

Binary data magnicompsysinfonixinstalled.nbin...

MagniComp SysInfo Installed (Windows)

Binary data magnicompsysinfowininstalled.nbin...

MagniComp SysInfo Privilege Escalation Vulnerability (Linux/UNIX)

The version of MagniComp SysInfo installed on the remote host is prior to 10-H64. It is, therefore, affected by a privilege escalation vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 C...

MagniComp SysInfo Information Exposure

MagniComp SysInfo Information Exposure CVE-2018-7268 ====================================================== The latest version of this advisory is available at: https://sintonen.fi/advisories/magnicomp-sysinfo-information-exposure.txt Overview -------- MagniComp SysInfo contains a information...

Microsoft Windows - UAC Protection Bypass (Via Slui File Handler Hijack) (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/exploit/exe' require 'msf/core/exploit/powershell' class MetasploitModule 'Windows UAC Protection Bypass Via Slui File Handler Hijack', 'Description' =...

MagniComp SysInfo Information Disclosure Vulnerability

MagniComp SysInfo is a system agent and viewer from MagniComp USA that supports multiple platforms. The product provides detailed system, software and hardware inventories, as well as operating system configuration and storage asset management configuration information, etc., in XML and HTML...

Information disclosure

MagniComp SysInfo before 10-H81, as shipped with BMC BladeLogic Automation and other products, contains an information exposure vulnerability in which a local unprivileged user is able to read any root uid 0 owned file on the system, regardless of the file permissions. Confidential information su...

CVE-2018-7268

MagniComp SysInfo before 10-H81, as shipped with BMC BladeLogic Automation and other products, contains an information exposure vulnerability in which a local unprivileged user is able to read any root uid 0 owned file on the system, regardless of the file permissions. Confidential information su...

CVE-2018-7268

MagniComp SysInfo before 10-H81, as shipped with BMC BladeLogic Automation and other products, contains an information exposure vulnerability in which a local unprivileged user is able to read any root uid 0 owned file on the system, regardless of the file permissions. Confidential information su...

CVE-2018-7268

MagniComp SysInfo before 10-H81, as shipped with BMC BladeLogic Automation and other products, contains an information exposure vulnerability in which a local unprivileged user is able to read any root uid 0 owned file on the system, regardless of the file permissions. Confidential information su...

CVE-2018-7268

MagniComp SysInfo before 10-H81 (bundled with BMC BladeLogic Automation and other products) is affected by an information disclosure vulnerability. A local, unprivileged user can read any root-owned file on the system (eg, /etc/shadow, log files, private keys) due to a combination of a setuid bin...

Design/Logic Flaw

An issue was discovered in MagniComp SysInfo before 10-H82 if setuid root the default. This vulnerability allows any local user on a Linux/UNIX system to run SysInfo and obtain a root shell, which can be used to compromise the local system...

CVE-2018-9310

An issue was discovered in MagniComp SysInfo before 10-H82 if setuid root the default. This vulnerability allows any local user on a Linux/UNIX system to run SysInfo and obtain a root shell, which can be used to compromise the local system...

CVE-2018-9310

An issue was discovered in MagniComp SysInfo before 10-H82 if setuid root the default. This vulnerability allows any local user on a Linux/UNIX system to run SysInfo and obtain a root shell, which can be used to compromise the local system...

CVE-2018-9310

An issue was discovered in MagniComp SysInfo before 10-H82 if setuid root the default. This vulnerability allows any local user on a Linux/UNIX system to run SysInfo and obtain a root shell, which can be used to compromise the local system...

CVE-2018-9310

MagniComp SysInfo (before version 10-H82) on Linux/UNIX, when installed setuid root by default, is vulnerable. A local user can execute SysInfo to obtain a root shell, enabling local compromise of the host. The connected documents do not disclose patch/version-specific fixes or mitigation steps. ...