10 matches found
VisiWave VWR File Parsing (CVE-2011-2386)
A remote code execution vulnerability exists in VisiWave's Site Survey Report. The vulnerability is caused by a failure to validate a user controlled property. A remote attacker can exploit this vulnerability by using a malicious property, potentially causing arbitrary code to be injected and...
VisiWave VWR File Parsing Trusted Pointer Vulnerability
No description provided by source. $Id: visiwavevwrtype.rb 12716 2011-05-25 13:57:12Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms...
VisiWave Site Survey Arbitrary Code Execution Vulnerability
VisiWave Site Survey is prone to an arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
VisiWave Site Survey Arbitrary Code Execution Vulnerability
This host is installed with VisiWave Site Survey and is prone to arbitrary code execution vulnerability. OpenVAS Vulnerability Test $Id: gbvisiwavesitesurveycodeexecvulnwin.nasl 7024 2017-08-30 11:51:43Z teissa $ VisiWave Site Survey Arbitrary Code Execution Vulnerability Authors: Madhuri D...
Null pointer dereference
VisiWaveReport.exe in AZO Technologies, Inc. VisiWave Site Survey before 2.1.9 allows user-assisted remote attackers to execute arbitrary code via a 1 vws and 2 vwr file with an invalid Type property, which triggers an untrusted pointer dereference...
CVE-2011-2386
CVE-2011-2386 affects VisiWave Site Survey (VisiWaveReport.exe) prior to version 2.1.9 from AZO Technologies. The vulnerability arises when processing VWR/VWS files with an invalid Type property, triggering an untrusted pointer dereference and enabling user-assisted remote code execution. Public ...
CVE-2011-2386
VisiWaveReport.exe in AZO Technologies, Inc. VisiWave Site Survey before 2.1.9 allows user-assisted remote attackers to execute arbitrary code via a 1 vws and 2 vwr file with an invalid Type property, which triggers an untrusted pointer dereference...
VisiWave Site Survey Report VWR File Handling Overflow
The version of VisiWave Site Survey on the remote host is earlier than 2.1.9 and thus reportedly contains a file handling overflow. If an attacker provides a malicious VWR file and convinces a user to open it with VisiWave, VisiWave may execute malicious code in the context of the user. C Tenable...
VisiWave VWR File Parsing Vulnerability
This module exploits a vulnerability found in VisiWave's Site Survey Report application. When processing .VWR files, VisiWaveReport.exe attempts to match a valid pointer based on the 'Type' property valid ones include 'Properties', 'TitlePage', 'Details', 'Graph', 'Table', 'Text', 'Image', but if...
VisiWave - '.VWR' File Parsing Trusted Pointer (Metasploit)
$Id: visiwavevwrtype.rb 12716 2011-05-25 13:57:12Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...