EUVD-2018-8603

Malware in sbrugna...

Membrane SOA Model 代码问题漏洞

Membrane SOA Model is an open source toolkit and Java API for WSDL and XML Schema. A code issue vulnerability exists in all versions of Membrane SOA Model that stems from an XML External Entity XXE: XML External Entity vulnerability in the WSDLParser method...

CIMTechniques CIMScan SQL Code Execution Vulnerability

CIMTechniques CIMScan is a critical infrastructure monitoring system from CIMTechniques, Inc. The system can be used to detect temperature, humidity and other variables in infrastructure environments.SOAP WSDL parser is one of the SOAP WSDL Web Services Description Language parsers. CIMTechniques...

CVE-2018-16803

In CIMTechniques CIMScan 6.x through 6.2, the SOAP WSDL parser allows attackers to execute SQL code...

Code injection

In CIMTechniques CIMScan 6.x through 6.2, the SOAP WSDL parser allows attackers to execute SQL code...

U.S. Dept Of Defense: SOAP WSDL Parser SQL Code Execution

Summary: SOAP WSDL Parser SQL Code Execution Description: It was possible to parse WSDL resources and read all functions from the SOAP Admin Panel, therefor i was able to repeat the sql query with a tampered request with my own custom SQL command. i was able to extract all the database names for...

Microsoft Windows .NET Framework - Remote Code Execution

Microsoft Windows .NET Framework - Remote Code Execution Source: https://github.com/Voulnet/CVE-2017-8759-Exploit-sample Running CVE-2017-8759 exploit sample. Flow of the exploit: Word macro runs in the Doc1.doc file. The macro downloads a badly formatted txt file over wsdl, which triggers the WS...

Microsoft Windows .NET Framework - Remote Code Execution 0day Exploit

Exploit for windows platform in category remote exploits Source: https://github.com/Voulnet/CVE-2017-8759-Exploit-sample Running CVE-2017-8759 exploit sample. Flow of the exploit: Word macro runs in the Doc1.doc file. The macro downloads a badly formatted txt file over wsdl, which triggers the WS...

FireEye Uncovers CVE-2017-8759: Zero-Day Used in the Wild to Distribute FINSPY

FireEye recently detected a malicious Microsoft Office RTF document that leveraged CVE-2017-8759, a SOAP WSDL parser code injection vulnerability. This vulnerability allows a malicious actor to inject arbitrary code during the parsing of SOAP WSDL definition contents. FireEye analyzed a Microsoft...

PT-2017-2916

Name of the Vulnerable Software and Affected Versions Microsoft .NET Framework versions 2.0 through 4.7 Description A remote code execution issue exists due to insufficient input validation in the IsValidUrl method of the SOAP WSDL Parser module. This allows an attacker to execute arbitrary code...