15 matches found
EUVD-2007-6667
Malware in sbrugna...
SUSE CVE-2007-6703
Unspecified vulnerability in vdccm before 0.10.1 in SynCE SynCE-dccm might allow attackers to cause a denial of service via unspecified vectors...
CVE-2008-1136
The Utils::runScripts function in src/utils.cpp in vdccm 0.92 through 0.10.0 in SynCE SynCE-dccm allows remote attackers to execute arbitrary commands via shell metacharacters in a certain string to TCP port 5679...
SynCE 0.92 'vdccm' Daemon Remote Command Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27178/info SynCE is prone to a remote command-injection vulnerability because it fails to adequately sanitize user-supplied input data. Attackers can exploit this issue to execute arbitrary commands in the context of the...
Fedora Update for vdccm FEDORA-2008-0680
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for vdccm FEDORA-2008-0680
Check for the Version of vdccm OpenVAS Vulnerability Test Fedora Update for vdccm FEDORA-2008-0680 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Fedora 8 : librapi-0.11-1.fc8 / librra-0.11-1.fc8 / libsynce-0.11-2.fc8 / odccm-0.11-1.fc8 / etc (2008-0680)
The remote Fedora host is missing one or more security updates : librra-0.11-1.fc8 : - Wed Jan 9 2008 Andreas Bierfert - 0.11-1 - version upgrade - Fri Dec 21 2007 Andreas Bierfert - 0.10.0-2 - rework BR - Wed May 9 2007 Aurelien Bompard 0.10.0-1 - version 0.10.0 synce-serial-0.11-1.fc8 : - Wed J...
[SECURITY] Fedora 8 Update: vdccm-0.10.1-1.fc8
Vdccm is a daemon running as the user on the desktop machine, which the Pocket PC connects to. This vdccm is a replacement of the original dccm and the vdccm comming with SynCE-KDE...
Design/Logic Flaw
Unspecified vulnerability in vdccm before 0.10.1 in SynCE SynCE-dccm might allow attackers to cause a denial of service via unspecified vectors...
CVE-2008-1136
The Utils::runScripts function in src/utils.cpp in vdccm 0.92 through 0.10.0 in SynCE SynCE-dccm allows remote attackers to execute arbitrary commands via shell metacharacters in a certain string to TCP port 5679...
CVE-2007-6703
CVE-2007-6703 affects vdccm (SynCE-dccm) prior to 0.10.1. The vulnerability is described as an unspecified denial-of-service by SynCE-dccm with high impact (confidentiality, integrity, and availability) per NVD CVSS 2.0 vector. Connected advisories (SUSE, Red Hat, Fedora OpenVAS entries) confirm ...
CVE-2008-1136
The Utils::runScripts function in src/utils.cpp in vdccm 0.92 through 0.10.0 in SynCE SynCE-dccm allows remote attackers to execute arbitrary commands via shell metacharacters in a certain string to TCP port 5679...
CVE-2008-1136
The CVE-2008-1136 entry affects SynCE-dccm (vdccm) versions 0.92 through 0.10.0. The vulnerability resides in Utils::runScripts (src/utils.cpp), where a string processed and sent to TCP port 5679 can be tainted by shell metacharacters, permitting remote command execution. This is a remote, networ...
Core Security Technologies Advisory 2007.1106
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies – CoreLabs Advisory http://www.coresecurity.com/corelabs SynCE Remote Command Injection Advisory Information Title: SynCE Remote Command Injection Advisory ID: CORE-2007-1106 Advisory URL:...
SynCE Remote Command Injection
SynCE Remote Command Injection Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Advisory Information Title: SynCE Remote Command Injection Advisory ID: CORE-2007-1106 Advisory URL: http://www.coresecurity.com/?action=item&id=2070 Date published: 2008-01-07 Date...