Lucene search
K

17 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/04/21 7:19 a.m.39 views

Security Bulletin: iText.jar in Tom Sawyer Perspective is vulnerable to XML External Entity

Summary iText.jar in Tom Sawyer Perspective is vulnerable to XML External Entity used by IBM Tivoli Network Manager ITNM IP Edition. Vulnerability Details CVEID:CVE-2017-9096 DESCRIPTION: iText PDF Library could allow a remote authenticated attacker to obtain sensitive information, caused by an X...

8.8CVSS7.9AI score0.09902EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.73 views

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2011-0009) (remote check)

The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the Linux Kernel in the doanonymouspage function due to improper separation of the stack and the heap. An attacker can exploit this to execute arbitra...

9.3CVSS7.5AI score0.41956EPSS
Exploits12References10
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Tom Sawyer Software GET Extension Factory Remote Code Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

7.1AI score
Exploits0
0day.today
0day.today
added 2012/06/10 12:0 a.m.67 views

Tom Sawyer Software GET Extension Factory Remote Code Execution

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

7.1AI score0.41956EPSS
Exploits9
Exploit DB
Exploit DB
added 2012/06/10 12:0 a.m.60 views

Tom Sawyer Software GET Extension Factory - Remote Code Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3...

9.3CVSS7AI score0.41956EPSS
Exploits9
Metasploit
Metasploit
added 2012/06/08 4:10 p.m.37 views

Tom Sawyer Software GET Extension Factory Remote Code Execution

This module exploits a remote code execution vulnerability in the tsgetx71ex553.dll ActiveX control installed with Tom Sawyer GET Extension Factory due to an incorrect initialization under Internet Explorer. While the Tom Sawyer GET Extension Factory is installed with some versions of VMware...

9.3CVSS10AI score0.41956EPSS
Exploits9
Check Point Advisories
Check Point Advisories
added 2011/11/01 12:0 a.m.43 views

Tom Sawyer ActiveX Control Memory Corruption (CVE-2011-2217)

A code execution vulnerability has been reported in Tom Sawyer. The vulnerability is due to an error while instantiating the ActiveX control in a browser. A remote attacker may exploit this vulnerability by enticing a user to open a specially crafted web-page. Successful exploitation of this...

9.3CVSS7.4AI score0.41956EPSS
Exploits9
Saint
Saint
added 2011/06/19 12:0 a.m.39 views

Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption

Added: 06/19/2011 CVE: CVE-2011-2217 BID: 48099 Background Tom Sawyer Software produces a variety of data visualization, layout, and analysis tools. Problem Certain ActiveX controls in tsgetxu71ex552.dll and tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client...

9.3CVSS7.1AI score0.41956EPSS
Exploits9
Saint
Saint
added 2011/06/19 12:0 a.m.49 views

Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption

Added: 06/19/2011 CVE: CVE-2011-2217 BID: 48099 Background Tom Sawyer Software produces a variety of data visualization, layout, and analysis tools. Problem Certain ActiveX controls in tsgetxu71ex552.dll and tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client...

9.3CVSS7.1AI score0.41956EPSS
Exploits9
Saint
Saint
added 2011/06/19 12:0 a.m.41 views

Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption

Added: 06/19/2011 CVE: CVE-2011-2217 BID: 48099 Background Tom Sawyer Software produces a variety of data visualization, layout, and analysis tools. Problem Certain ActiveX controls in tsgetxu71ex552.dll and tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client...

9.3CVSS7.1AI score0.41956EPSS
Exploits9
Saint
Saint
added 2011/06/19 12:0 a.m.32 views

Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption

Added: 06/19/2011 CVE: CVE-2011-2217 BID: 48099 Background Tom Sawyer Software produces a variety of data visualization, layout, and analysis tools. Problem Certain ActiveX controls in tsgetxu71ex552.dll and tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client...

9.3CVSS7.1AI score0.41956EPSS
Exploits9
securityvulns
securityvulns
added 2011/06/11 12:0 a.m.34 views

VMWare VirtualCenter ActiveX memory corruption

Tom Sawyer's Default GET Extension Factory ActiveX memory corruption...

9.3CVSS3.6AI score0.41956EPSS
Exploits9References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2011/06/07 12:0 a.m.151 views

Tom Sawyer Software GET Extension Factory COM Object Instantiation Memory Corruption

Tom Sawyer Software's GET Extension Factory, a component used for graph visualization applications, is installed on the remote Windows host. It may have been bundled with a third-party application, such as the VMware Infrastructure Client or Embarcadero ER / Studio XE2. The installed version of...

9.3CVSS5.8AI score0.41956EPSS
Exploits9References6
NVD
NVD
added 2011/06/06 7:55 p.m.32 views

CVE-2011-2217

Certain ActiveX controls in 1 tsgetxu71ex552.dll and 2 tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client aka VMware Infrastructure Client 2.0.2 before Build 230598 and 2.5 before Build 204931 in VMware Infrastructure 3, do not properly handle attempted...

9.3CVSS7.4AI score0.41956EPSS
Exploits9References7
Prion
Prion
added 2011/06/06 7:55 p.m.22 views

Memory corruption

Certain ActiveX controls in 1 tsgetxu71ex552.dll and 2 tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client aka VMware Infrastructure Client 2.0.2 before Build 230598 and 2.5 before Build 204931 in VMware Infrastructure 3, do not properly handle attempted...

9.3CVSS8AI score0.41956EPSS
Exploits9References7Affected Software3
Cvelist
Cvelist
added 2011/06/06 7:0 p.m.39 views

CVE-2011-2217

Certain ActiveX controls in 1 tsgetxu71ex552.dll and 2 tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client aka VMware Infrastructure Client 2.0.2 before Build 230598 and 2.5 before Build 204931 in VMware Infrastructure 3, do not properly handle attempted...

7.4AI score0.41956EPSS
Exploits9References7
CVE
CVE
added 2011/06/06 7:0 p.m.72 views

CVE-2011-2217

The CVE-2011-2217 issue affects Tom Sawyer GET Extension Factory ActiveX controls (e.g., tsgetx71ex552/tsgetx71ex553.dll) installed with VMware VI Client and related Embarcadero ER/Studio bundles. The vulnerability stems from incorrect initialization in Internet Explorer, enabling remote attacker...

9.3CVSS7.5AI score0.41956EPSS
Exploits9References7Affected Software3
Rows per page
Query Builder