832 matches found
SAP Message Server - Group Remote Buffer Overflow
SAP Message Server - Group Remote Buffer Overflow source: https://www.securityfocus.com/bid/24765/info SAP Message Server is prone to a remote heap-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data before copying it to an...
iDefense Security Advisory 04.26.07: Symantec Norton Ghost 10 Service Manager Buffer Overflow Vulnerability
Symantec Norton Ghost 10 Service Manager Buffer Overflow Vulnerability iDefense Security Advisory 04.26.07 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 26, 2007 I. BACKGROUND Symantec Norton Ghost is a backup and recovery application designed to allow users to completely restore the...
LANDesk Management Suite 8.7 Alert Service - 'AOLSRVR.exe' Remote Buffer Overflow
source: https://www.securityfocus.com/bid/23483/info LANDesk Management Suite is prone to a remote stack-based buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker can exploit this issue t...
LANDesk Management Suite 8.7 Alert Service - AOLSRVR.exe Remote Buffer Overflow
LANDesk Management Suite 8.7 Alert Service - AOLSRVR.exe Remote Buffer Overflow source: https://www.securityfocus.com/bid/23483/info LANDesk Management Suite is prone to a remote stack-based buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before...
avm fritz!dsl igd control service 2.2.29 - Directory Traversal Information Disclosure
avm fritz!dsl igd control service 2.2.29 - Directory Traversal Information Disclosure source: https://www.securityfocus.com/bid/22093/info The AVM Fritz!DSL IGD Control Service is prone to a remote information-disclosure vulnerability because the application fails to properly sanitize user-suppli...
avm fritz!dsl igd control service 2.2.29 - Directory Traversal Information Disclosure
source: https://www.securityfocus.com/bid/22093/info The AVM Fritz!DSL IGD Control Service is prone to a remote information-disclosure vulnerability because the application fails to properly sanitize user-supplied input. Exploiting this issue allows remote, unauthenticated attackers to retrieve t...
HP (Multiple Products) - PML Driver HPZ12 Privilege Escalation
source: https://www.securityfocus.com/bid/21935/info Multiple HP products are prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain SYSTEM-level privileges, completely compromising affected computers. This issue affects HP products that use the 'PML Drive...
HP (Multiple Products) - PML Driver HPZ12 Privilege Escalation
HP Multiple Products - PML Driver HPZ12 Privilege Escalation source: https://www.securityfocus.com/bid/21935/info Multiple HP products are prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain SYSTEM-level privileges, completely compromising affected...
Symantec Backup Exec System Recovery Manager 7.0 - FileUpload Class Unauthorized File Upload
Symantec Backup Exec System Recovery Manager 7.0 - FileUpload Class Unauthorized File Upload source: https://www.securityfocus.com/bid/27487/info Symantec Backup Exec System Recovery Manager is prone to a vulnerability that allows arbitrary unauthorized files to be uploaded to any location on the...
Georgia SoftWorks Secure Shell Server 7.1.3 - Multiple Remote Code Execution Vulnerabilities
source: https://www.securityfocus.com/bid/27103/info Georgia SoftWorks Secure Shell Server is prone to multiple remote code-execution vulnerabilities: - A format-string vulnerability - Two buffer-overflow vulnerabilities. Successfully exploiting these issues allows remote attackers to execute...
Kerio Personal Firewall 4.3 - 'IPHLPAPI.dll' Local Privilege Escalation
source: https://www.securityfocus.com/bid/21828/info Kerio Personal Firewall is prone to a local privilege-escalation vulnerability. A local attacker could exploit this issue to execute arbitrary machine code with SYSTEM-level privileges. A successful exploit could result in the complete compromi...
Kerio Personal Firewall 4.3 - IPHLPAPI.dll Local Privilege Escalation
Kerio Personal Firewall 4.3 - IPHLPAPI.dll Local Privilege Escalation source: https://www.securityfocus.com/bid/21828/info Kerio Personal Firewall is prone to a local privilege-escalation vulnerability. A local attacker could exploit this issue to execute arbitrary machine code with SYSTEM-level...
Computer Associates Personal Firewall 9.0 - HIPS Driver 'kmxstart.sys' Local Privilege Escalation
// source: https://www.securityfocus.com/bid/21140/info Multiple Computer Associates security-related products are prone to multiple local privilege-escalation vulnerabilities. An attacker can leverage these issues to execute arbitrary code with SYSTEM-level privileges. This could result in the...
Computer Associates Personal Firewall 9.0 - HIPS Driver 'kmxfw.sys' Local Privilege Escalation
// source: https://www.securityfocus.com/bid/21140/info Multiple Computer Associates security-related products are prone to multiple local privilege-escalation vulnerabilities. An attacker can leverage these issues to execute arbitrary code with SYSTEM-level privileges. This could result in the...
Computer Associates Personal Firewall 9.0 - HIPS Driver kmxfw.sys Local Privilege Escalation
Computer Associates Personal Firewall 9.0 - HIPS Driver kmxfw.sys Local Privilege Escalation // source: https://www.securityfocus.com/bid/21140/info Multiple Computer Associates security-related products are prone to multiple local privilege-escalation vulnerabilities. An attacker can leverage...
Computer Associates Personal Firewall 9.0 - HIPS Driver kmxstart.sys Local Privilege Escalation
Computer Associates Personal Firewall 9.0 - HIPS Driver kmxstart.sys Local Privilege Escalation // source: https://www.securityfocus.com/bid/21140/info Multiple Computer Associates security-related products are prone to multiple local privilege-escalation vulnerabilities. An attacker can leverage...
Microsoft Windows Workstation Service NetpManageIPCConnect Remote Code Execution Vulnerability
Description Microsoft Windows Workstation service is prone to a remote code-execution vulnerability. Exploiting this issue allows remote, anonymous attackers to execute arbitrary machine code on affected computers with SYSTEM-level privileges. This facilitates the complete compromise of affected...
iDefense Security Advisory 11.08.06: Cisco Secure Desktop Privilege Escalation Vulnerability
Cisco Secure Desktop Privilege Escalation Vulnerability iDefense Security Advisory 11.08.06 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 08, 2006 I. BACKGROUND Cisco Secure Desktop allows secure VPN connections from remote PCs and offers functionality to ensure PCs meet administrato...
Citrix Metaframe privilege escalation
Weak permissions for registry key allow user defined DLL to be attacjed to system level process...
Cisco Router Web Setup (CRWS) contains an insecure default IOS configuration
Overview A vulnerability in the Cisco Router Web Setup CRWS web configuration tool on some Cisco 800 and SOHO series routers may allow remote execution of system-level commands with no authentication. Description Cisco Router Web Setup Tool The Cisco Router Web Setup tool, or CRWS, provides a GUI...