361 matches found
[security bulletin] HPSBHF03124 rev.1 - HP Thin Clients running Bash, Remote Execution of Code
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04471546 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04471546 Version: 1 HPSBHF03124 rev....
Indusoft Thin Client 7.1 ActiveX - Buffer Overflow
No description provided by source. html !-- InduSoft Thin Client v7.1 Date: October 8, 2013 Exploit Author: Blake Software Link: http://www.indusoft.com/Products-Downloads/Download-Library Version: 7.1 Tested on: Windows XP SP3 / IE6 Affected File:i386\novapi7.dll Member Name: Initialize2 Program...
InduSoft Web Studio Thin Client Detection
Binary data 8033.prm...
kernel security and bug fix update
2.6.32-431.17.1 - scsi qla2xxx: Fixup looking for a space in the outstandingcmds array in qla2x00allociocbs Chad Dupuis 1085660 1070856 - scsi isci: fix reset timeout handling David Milburn 1080600 1040393 - scsi isci: correct erroneous foreachiscihost macro David Milburn 1074855 1059325 - kernel...
[security bulletin] HPSBHF03021 rev.1 - HP Thin Client with ThinPro OS or Smart Zero Core Services, Running OpenSSL, Remote Disclosure of Information
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04262670 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04262670 Version: 1 HPSBHF03021 rev....
HPSBHF03021 rev.1 - HP Thin Client with ThinPro OS or Smart Zero Core Services, Running OpenSSL, Remote Disclosure of Information
Potential Security Impact Remote disclosure of information VULNERABILITY SUMMARY The “Heartbleed” vulnerability was detected in specific OpenSSL versions. OpenSSL is a 3rd party product that is embedded with some of HP products. This bulletin’s objective is to notify HP customers about certain HP...
Praim Ino SoC I9000 Series瘦客户端"browsed"命令注入漏洞
Praim Ino SoC I9000 Series Thin Clients是一款瘦客户端产品。 Praim Ino SoC I9000 Series Thin Clients相关"browsed"应用没有正确过滤用户提交的输入,允许攻击者向UDP 1680端口发送特制报文,可注入和执行任意shell命令。 0 Praim Ino SoC I9000 Series Thin Clients 目前没有详细解决方案: http://www.praim.com/en/products/solution-thin-client/ino-soc-series1319idp/...
Ruby on Rails JSON Processor Floating Point Heap Overflow DoS
When Ruby attempts to convert a string representation of a large floating point decimal number to its floating point equivalent, a heap-based buffer overflow can be triggered. This module has been tested successfully on a Ruby on Rails application using Ruby version 1.9.3-p448 with WebRick and Th...
InduSoft ISSymbol ActiveX Control Buffer Overflow (Update A)
Overview Security researcher Dmitriy Pletnevo of Secunia ResearchSecunia Research, http://secunia.com/secuniaresearch/2011-36/, website last accessed June 16, 2011. has released details of multiple overflow vulnerabilities affecting the InduSoft ISSymbol ActiveX control. The researcher identified...
Indusoft Thin Client 7.1 Buffer Overflow
// heap spray for IE6 // calc - 196 bytes var shellcode =...
Indusoft Thin Client 7.1 - ActiveX Buffer Overflow
Indusoft Thin Client 7.1 - ActiveX Buffer Overflow // heap spray for IE6 // calc - 196 bytes var shellcode =...
Indusoft Thin Client 7.1 ActiveX - Buffer Overflow Vulnerability
Exploit for windows platform in category remote exploits // heap spray for IE6 // calc - 196 bytes var shellcode =...
Indusoft Thin Client 7.1 - ActiveX Buffer Overflow
// heap spray for IE6 // calc - 196 bytes var shellcode =...
CVE-2013-2339
HP Smart Zero Core 4.3 and 4.3.1 on the t410 All-in-One Smart Zero Client, t410 Smart Zero Client, t510 Flexible Thin Client, t5565z Smart Client, t610 Flexible Thin Client, and t610 PLUS Flexible Thin Client allows local users to obtain sensitive information, modify data, or cause a denial of...
Code injection
HP Smart Zero Core 4.3 and 4.3.1 on the t410 All-in-One Smart Zero Client, t410 Smart Zero Client, t510 Flexible Thin Client, t5565z Smart Client, t610 Flexible Thin Client, and t610 PLUS Flexible Thin Client allows local users to obtain sensitive information, modify data, or cause a denial of...
CVE-2013-2339
The CVE-2013-2339 entry concerns HP Smart Zero Core OS 4.3 and 4.3.1 running on HP Smart Zero Client devices (t410/t510/t610 etc.). The issue is described as allowing a local user to obtain sensitive information, modify data, or cause a denial of service via unknown vectors. HP’s security bulleti...
HPSBHF02878 rev.1 - HP Smart Zero Client, Unauthorized Access
Potential Security Impact Unauthorized access VULNERABILITY SUMMARY A potential security vulnerability has been identified with the HP Smart Zero Client. This vulnerability could be exploited by a local user on the device to gain unauthorized access. RESOLUTION HP has provided updated operating...
Indusoft Thin Client ISSymbol ActiveX Control InternationalSeparator buffer overflow
Added: 11/13/2012 CVE: CVE-2011-0340 BID: 47596 OSVDB: 72865 Background Indusoft Thin Client allows access to Indusoft Web Studio projects without requiring Web Studio to be installed. It includes the ISSymbol ActiveX control, which is also included in Indusoft Web Studio and Advantech Studio...
Indusoft Thin Client ISSymbol ActiveX Control InternationalSeparator buffer overflow
Added: 11/13/2012 CVE: CVE-2011-0340 BID: 47596 OSVDB: 72865 Background Indusoft Thin Client allows access to Indusoft Web Studio projects without requiring Web Studio to be installed. It includes the ISSymbol ActiveX control, which is also included in Indusoft Web Studio and Advantech Studio...
Indusoft Thin Client ISSymbol ActiveX Control InternationalSeparator buffer overflow
Added: 11/13/2012 CVE: CVE-2011-0340 BID: 47596 OSVDB: 72865 Background Indusoft Thin Client allows access to Indusoft Web Studio projects without requiring Web Studio to be installed. It includes the ISSymbol ActiveX control, which is also included in Indusoft Web Studio and Advantech Studio...