Missing Encryption of Sensitive Data

Overview Affected versions of this package are vulnerable to Missing Encryption of Sensitive Data via the DownloadTinyFile function. An attacker can intercept and modify file downloads by performing a man-in-the-middle attack on network traffic, potentially causing peers to receive malicious file...

The vulnerability of the web_tool_upgradeManager_post() function in the microprogramming software for PLANET Technology allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the webtoolupgradeManagerpost function in PLANET Technology’s microcontroller software is related to buffer overflow during the processing of the bytftpsrvip parameter. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

CVE-2025-44897

FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the bytftpsrvip parameter in the webtoolupgradeManagerpost function...

PLANET FW-WGS-804HPT 安全漏洞

PLANET FW-WGS-804HPT is a wall-mounted managed switch from PLANET China. A security vulnerability exists in PLANET FW-WGS-804HPT v1.305b241111, which originates from a stack overflow in the bytftpsrvip parameter of the webtoolupgradeManagerpost function...

CVE-2025-44897

FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the bytftpsrvip parameter in the webtoolupgradeManagerpost function...

CVE-2025-44897

The CVE-2025-44897 issue affects FW-WGS-804HPT v1.305b241111, with a stack overflow discovered in the bytftp_srvip parameter of the web_tool_upgradeManager_post function. Reported CVSSv3.1 is 9.8 (CRITICAL) with NETWORK attack vector, no user interaction, and impacts to confidentiality, integrity...

Cisco Prime Collaboration Provisioning Tool Arbitrary File Write Vulnerability

Cisco Prime Collaboration Provisioning Tool is a set of Web-based, next-generation communications services tools from Cisco. The tool provides IP communication services capabilities for IP telephony, voice mail, and unified communications environments. upgradeManager is one of the upgrade manager...

CVE-2017-6759

A vulnerability in the UpgradeManager of the Cisco Prime Collaboration Provisioning Tool 12.1 could allow an authenticated, remote attacker to write arbitrary files as root on the system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by...

Stack overflow

Stack-based buffer overflow in the QMPUpgrade.Upgrade.1 ActiveX control in QMPUpgrade.dll 1.0.0.1 in Move Networks Upgrade Manager allows remote attackers to execute arbitrary code via a long first argument to the Upgrade method. NOTE: some of these details are obtained from third party informati...

CVE-2008-0477

Stack-based buffer overflow in the QMPUpgrade.Upgrade.1 ActiveX control in QMPUpgrade.dll 1.0.0.1 in Move Networks Upgrade Manager allows remote attackers to execute arbitrary code via a long first argument to the Upgrade method. NOTE: some of these details are obtained from third party informati...

CVE-2008-0477

Stack-based buffer overflow in the QMPUpgrade.Upgrade.1 ActiveX control in QMPUpgrade.dll 1.0.0.1 in Move Networks Upgrade Manager allows remote attackers to execute arbitrary code via a long first argument to the Upgrade method. NOTE: some of these details are obtained from third party informati...

[Full-disclosure] Move Networks Upgrade Manager QMPUpgrade.dll Buffer Overflow

Who: Move Networks http://www.movenetworks.com/ What: Move Networks Quantum Streaming Player Upgrade Manager How: QMPUpgrade.dll version 1.0.0.1 6054D082-355D-4B47-B77C-36A778899F48 QMPUpgrade.dll is packaged with an older version of the Quantum player. The player itself has several...

movenet-overflow.txt

Move Networks Upgrade Manager Control Buffer Overflow Exploit function Check // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 = unescape"%u03eb%ueb59%ue805%ufff8%uffff%u4949%u4949%u4949" +...

Move Networks Upgrade Manager Control Buffer Overflow Exploit

No description provided by source. !-- Move Networks Upgrade Manager Control Buffer Overflow Exploit written by e.b. Tested on Windows XP SP2fully patched English, IE6, QMPUpgrade.dll version 1.0.0.1 Thanks to h.d.m. and the Metasploit crew -- html head titleMove Networks Upgrade Manager Control...

Move Networks Upgrade Manager Control - Remote Buffer Overflow

Move Networks Upgrade Manager Control - Remote Buffer Overflow Move Networks Upgrade Manager Control Buffer Overflow Exploit function Check // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 =...