EUVD-2023-51382

Malicious code in bioql PyPI...

CVE-2025-40743

A vulnerability has been identified in SINUMERIK 828D PPU.4 All versions V4.95 SP5, SINUMERIK 828D PPU.5 All versions V5.25 SP1, SINUMERIK 840D sl All versions V4.95 SP5, SINUMERIK MC All versions V1.25 SP1, SINUMERIK MC V1.15 All versions V1.15 SP5, SINUMERIK ONE All versions V6.25 SP1, SINUMERI...

CVE-2023-47251

In mprivacy-tools before 2.0.406g in m-privacy TightGate-Pro Server, a Directory Traversal in the print function of the VNC service allows authenticated attackers with access to a VNC session to automatically transfer malicious PDF documents by moving them into the .spool directory, and then...

CVE-2023-47251

In mprivacy-tools before 2.0.406g in m-privacy TightGate-Pro Server, a Directory Traversal in the print function of the VNC service allows authenticated attackers with access to a VNC session to automatically transfer malicious PDF documents by moving them into the .spool directory, and then...

Directory traversal

In mprivacy-tools before 2.0.406g in m-privacy TightGate-Pro Server, a Directory Traversal in the print function of the VNC service allows authenticated attackers with access to a VNC session to automatically transfer malicious PDF documents by moving them into the .spool directory, and then...

CVE-2023-47251

CVE-2023-47251 affects mprivacy-tools before 2.0.406g (TightGate-Pro Server). A Directory Traversal in the VNC print function allows authenticated users with a VNC session to place malicious PDFs into the .spool directory and trigger the VNC service to transfer them to the connected VNC client’s ...

CVE-2023-47251

In mprivacy-tools before 2.0.406g in m-privacy TightGate-Pro Server, a Directory Traversal in the print function of the VNC service allows authenticated attackers with access to a VNC session to automatically transfer malicious PDF documents by moving them into the .spool directory, and then...

Authentication Capture: VNC

This module provides a fake VNC service that is designed to capture authentication credentials. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Authentication Capture: VNC', 'Description' = %q...

Using the VNC service elevation of Privilege method summary-vulnerability warning-the black bar safety net

If a host's WEBSHELL, want elevated permissions, find the host running the VNC service, you can consider using the following method. By default the VNC service side of the password are placed in the registry, this article is only for this case. First with ASP read-out registry in the encrypted...

AK-Systems Windows Terminals远程未授权管理访问漏洞

基于WinCE的Windows Terminals thin客户端由AK-Systems公司制作的包含VNC服务来远程管理和设置的应用程序。 新固件版本的应用程序其VNC访问没有通过密码保护，因此任何有VNC客户端的用户可以连接终端并查看RDP/Citrix会话或进行中间人攻击。 AK-Systems Windows Terminal 1.2.5 ExVLP http://www.ak-systems.ru/products/models/...