267 matches found
KB4467703: Windows 8.1 and Windows Server 2012 R2 November 2018 Security Update
The remote Windows host is missing security update 4467703 or cumulative update 4467697. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability...
LG-Ericsson iPECS NMS 30M - Directory Traversal
LG-Ericsson iPECS NMS 30M - Directory Traversal Exploit Title: LG-Ericsson iPECS NMS 30M - Directory Traversal Shodon Dork: iPECS CM Exploit Author: Safak Aslan Software Link: www.ipecs.com Version: 30M-B.2Ia and 30M-2.3Gn Authentication Required: No Tested on: Linux CVE: N/A Description The...
LG-Ericsson iPECS NMS 30M Directory Traversal
Exploit Title: LG-Ericsson iPECS NMS 30M - Directory Traversal Shodon Dork: iPECS CM Exploit Author: Safak Aslan Software Link: www.ipecs.com Version: 30M System Authentication Required: No Tested on: Linux CVE: N/A Description The directory traversal was detected on LG-Ericsson's iPECS product...
Linux: Uninitialized state in x86 PV failsafe callback path
ISSUE DESCRIPTION Linux has a failsafe callback, invoked by Xen under certain conditions. Normally in this failsafe callback, errorentry is paired with errorexit; and errorentry uses %ebx to communicate to errorexit whether to use the user or kernel return path. Unfortunately, on 64-bit PV Xen on...
Cisco Adaptive Security Appliance Path Traversal
require 'msf/core' class MetasploitModule "Cisco Adaptive Security Appliance - Path Traversal", 'Description' = %q Cisco Adaptive Security Appliance - Path Traversal CVE-2018-0296 A security vulnerability in Cisco ASA that would allow an attacker to view sensitive system information without...
Unicorn Suspicious Evasion Technique
Known exploits could potentially bypass security products by using Unicorn tool obfuscation techniques. Successful exploitation of this issue may allow execution of arbitrary code on a vulnerable system...
CVE-2018-6218
A DLL Hijacking vulnerability in Trend Micro's User-Mode Hooking Module UMH could allow an attacker to run arbitrary code on a vulnerable system...
Spoofing
A DLL Hijacking vulnerability in Trend Micro's User-Mode Hooking Module UMH could allow an attacker to run arbitrary code on a vulnerable system...
CVE-2018-6218
A DLL Hijacking vulnerability in Trend Micro's User-Mode Hooking Module UMH could allow an attacker to run arbitrary code on a vulnerable system...
Spoofing
A session hijacking via log disclosure vulnerability in Trend Micro Smart Protection Server Standalone versions 3.2 and below could allow an unauthenticated attacker to hijack active user sessions to perform authenticated requests on a vulnerable system...
Information disclosure
An uninitialized pointer information disclosure vulnerability in Trend Micro Mobile Security Enterprise versions 9.7 and below could allow an unauthenticated remote attacker to disclosure sensitive information on a vulnerable system...
Design/Logic Flaw
A vulnerability in Trend Micro Smart Protection Server Standalone versions 3.2 and below could allow an attacker to perform remote command execution via a cron job injection on a vulnerable system...
CVE-2017-14097
An improper access control vulnerability in Trend Micro Smart Protection Server Standalone versions 3.2 and below could allow an attacker to decrypt contents of a database with information that could be used to access a vulnerable system...
Design/Logic Flaw
A service DLL preloading vulnerability in Trend Micro Encryption for Email versions 5.6 and below could allow an unauthenticated remote attacker to execute arbitrary code on a vulnerable system...
grant_table: possibly premature clearing of GTF_writing / GTF_reading
ISSUE DESCRIPTION Xen maintains the GTFread,writing bits as appropriate, to inform the guest that a grant is in use. A guest is expected not to modify the grant details while it is in use, whereas the guest is free to modify/reuse the grant entry when it is not in use. Under some circumstances, X...
NfSen 1.3.7 AlienVault OSSIM 5.3.4 - Command Injection
NfSen 1.3.7 AlienVault OSSIM 5.3.4 - Command Injection Exploit Title: NfSen/AlienVault remote root exploit IPC query command injection Version: NfSen 1.3.6p1, 1.3.7 and 1.3.7-1bpo80+1all. Previous versions are also likely to be affected. Version: AlienVault 5.3.4 Date: 2017-07-10 Vendor Homepage:...
NfSen 1.3.7 / AlienVault USM/OSSIM 5.3.4 Command Injection
Exploit Title: NfSen/AlienVault remote root exploit IPC query command injection Version: NfSen 1.3.6p1, 1.3.7 and 1.3.7-1bpo80+1all. Previous versions are also likely to be affected. Version: AlienVault 5.3.4 Date: 2017-07-10 Vendor Homepage: http://nfsen.sourceforge.net/ Vendor Homepage:...
NfSen < 1.3.7 / AlienVault OSSIM 5.3.4 - Command Injection
Exploit Title: NfSen/AlienVault remote root exploit IPC query command injection Version: NfSen 1.3.6p1, 1.3.7 and 1.3.7-1bpo80+1all. Previous versions are also likely to be affected. Version: AlienVault 5.3.4 Date: 2017-07-10 Vendor Homepage: http://nfsen.sourceforge.net/ Vendor Homepage:...
Input validation
IBM Tivoli Key Lifecycle Manager 2.5, and 2.6 could allow a remote attacker to upload arbitrary files, caused by the improper validation of file extensions, which could allow the attacker to execute arbitrary code on the vulnerable system...
U.S. Dept Of Defense: Server Side Request Forgery (SSRF) vulnerability in a DoD website
A Department of Defense webserver was vulnerable to an SSRF attack that could have enabled a remote user to send custom web requests from the vulnerable system. @korprit was able to demonstrate this vulnerability by crafting specially formatted URLs. Thanks @korprit!...