8 matches found
FortiClientMac 安全漏洞
Fortinet FortiClientMAC is a security tool for the macOS platform from Fortinet, Inc. A security vulnerability exists in FortiClientMac versions 7.2.3 and earlier, 7.0.10 and earlier, which stems from a vulnerability that could allow a local attacker to execute arbitrary code or commands by writi...
Design/Logic Flaw
Networker 19.9 and all prior versions contains a Plain-text Password stored in temporary config file during backup duration in NMDA MySQL Database backups. User has low privilege access to Networker Client system could potentially exploit this vulnerability, leading to the disclosure of configure...
PT-2024-2070 · Dell Emc · Dell Emc Networker
Name of the Vulnerable Software and Affected Versions: Dell EMC NetWorker versions 19.9 and all prior versions Description: The issue is related to insufficient protection of registration data, which may allow an attacker to obtain user registration data. Specifically, a plain-text password is...
Dell NetWorker 安全漏洞
Dell NetWorker is an application from Dell USA Inc. Provides forum discussion features for Dell Inc. An information disclosure vulnerability exists in Dell NetWorker, which arises from the database storing plain text passwords in a temporary configuration file during backups, and can be exploited...
DEBIAN-CVE-2011-1930
In klibc 1.5.20 and 1.5.21, the DHCP options written by ipconfig to /tmp/net-$DEVICE.conf are not properly escaped. This may allow a remote attacker to send a specially crafted DHCP reply which could execute arbitrary code with the privileges of any process which sources DHCP options...
Denial Of Service (DoS) Or Escalation Of Privileges
Phusion Passenger gem before 3.0.21 and 4.0.x before 4.0.5 for Ruby allows local users to cause a denial of service prevent application start or gain privileges by pre-creating a temporary config file in a directory with a predictable name in /tmp/ before it is used by the gem...
Cisco ASR 9000 Series Router vty session closure denial of service vulnerability
The Cisco ASR 9000 is Cisco's ultra-high-capacity, carrier-grade edge router platform designed for next-generation IP network IP NGN transformation. A security vulnerability exists in the Cisco ASR 9000 series routers that allows local users to exploit the vulnerability to shut down VTY sessions ...
PT-2014-2554 · Phusion · Phusion Passenger
Name of the Vulnerable Software and Affected Versions: Phusion Passenger gem versions 3.0.0 through 3.0.20 Phusion Passenger gem versions 4.0.0 through 4.0.4 Description: The issue allows local users to cause a denial of service or gain privileges by pre-creating a temporary config file in a...