17 matches found
Security Bulletin: iText.jar in Tom Sawyer Perspective is vulnerable to XML External Entity
Summary iText.jar in Tom Sawyer Perspective is vulnerable to XML External Entity used by IBM Tivoli Network Manager ITNM IP Edition. Vulnerability Details CVEID:CVE-2017-9096 DESCRIPTION: iText PDF Library could allow a remote authenticated attacker to obtain sensitive information, caused by an X...
VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2011-0009) (remote check)
The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the Linux Kernel in the doanonymouspage function due to improper separation of the stack and the heap. An attacker can exploit this to execute arbitra...
Tom Sawyer Software GET Extension Factory Remote Code Execution
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...
Tom Sawyer Software GET Extension Factory Remote Code Execution
Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...
Tom Sawyer Software GET Extension Factory - Remote Code Execution (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3...
Tom Sawyer Software GET Extension Factory Remote Code Execution
This module exploits a remote code execution vulnerability in the tsgetx71ex553.dll ActiveX control installed with Tom Sawyer GET Extension Factory due to an incorrect initialization under Internet Explorer. While the Tom Sawyer GET Extension Factory is installed with some versions of VMware...
Tom Sawyer ActiveX Control Memory Corruption (CVE-2011-2217)
A code execution vulnerability has been reported in Tom Sawyer. The vulnerability is due to an error while instantiating the ActiveX control in a browser. A remote attacker may exploit this vulnerability by enticing a user to open a specially crafted web-page. Successful exploitation of this...
Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption
Added: 06/19/2011 CVE: CVE-2011-2217 BID: 48099 Background Tom Sawyer Software produces a variety of data visualization, layout, and analysis tools. Problem Certain ActiveX controls in tsgetxu71ex552.dll and tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client...
Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption
Added: 06/19/2011 CVE: CVE-2011-2217 BID: 48099 Background Tom Sawyer Software produces a variety of data visualization, layout, and analysis tools. Problem Certain ActiveX controls in tsgetxu71ex552.dll and tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client...
Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption
Added: 06/19/2011 CVE: CVE-2011-2217 BID: 48099 Background Tom Sawyer Software produces a variety of data visualization, layout, and analysis tools. Problem Certain ActiveX controls in tsgetxu71ex552.dll and tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client...
Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption
Added: 06/19/2011 CVE: CVE-2011-2217 BID: 48099 Background Tom Sawyer Software produces a variety of data visualization, layout, and analysis tools. Problem Certain ActiveX controls in tsgetxu71ex552.dll and tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client...
VMWare VirtualCenter ActiveX memory corruption
Tom Sawyer's Default GET Extension Factory ActiveX memory corruption...
Tom Sawyer Software GET Extension Factory COM Object Instantiation Memory Corruption
Tom Sawyer Software's GET Extension Factory, a component used for graph visualization applications, is installed on the remote Windows host. It may have been bundled with a third-party application, such as the VMware Infrastructure Client or Embarcadero ER / Studio XE2. The installed version of...
CVE-2011-2217
Certain ActiveX controls in 1 tsgetxu71ex552.dll and 2 tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client aka VMware Infrastructure Client 2.0.2 before Build 230598 and 2.5 before Build 204931 in VMware Infrastructure 3, do not properly handle attempted...
Memory corruption
Certain ActiveX controls in 1 tsgetxu71ex552.dll and 2 tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client aka VMware Infrastructure Client 2.0.2 before Build 230598 and 2.5 before Build 204931 in VMware Infrastructure 3, do not properly handle attempted...
CVE-2011-2217
Certain ActiveX controls in 1 tsgetxu71ex552.dll and 2 tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client aka VMware Infrastructure Client 2.0.2 before Build 230598 and 2.5 before Build 204931 in VMware Infrastructure 3, do not properly handle attempted...
CVE-2011-2217
The CVE-2011-2217 issue affects Tom Sawyer GET Extension Factory ActiveX controls (e.g., tsgetx71ex552/tsgetx71ex553.dll) installed with VMware VI Client and related Embarcadero ER/Studio bundles. The vulnerability stems from incorrect initialization in Internet Explorer, enabling remote attacker...