Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2025/05/21 7:12 p.m.4 views

CVE-2009-0695

hagent.exe in Wyse Device Manager WDM 4.7.x does not require authentication for commands, which allows remote attackers to obtain management access via a crafted query, as demonstrated by a V52 query that triggers a power-off action...

7.5CVSS6.9AI score0.68887EPSS
Exploits11References1
RedhatCVE
RedhatCVE
added 2025/05/21 7:12 p.m.6 views

CVE-2009-0693

Multiple buffer overflows in Wyse Device Manager WDM 4.7.x allow remote attackers to execute arbitrary code via 1 the User-Agent HTTP header to hserver.dll or 2 unspecified input to hagent.exe...

7.5CVSS8.2AI score0.12772EPSS
Exploits0References1
NVD
NVD
added 2012/06/19 8:55 p.m.18 views

CVE-2009-0693

Multiple buffer overflows in Wyse Device Manager WDM 4.7.x allow remote attackers to execute arbitrary code via 1 the User-Agent HTTP header to hserver.dll or 2 unspecified input to hagent.exe...

7.5CVSS7.8AI score0.12772EPSS
Exploits0References4
NVD
NVD
added 2012/06/19 8:55 p.m.19 views

CVE-2009-0695

hagent.exe in Wyse Device Manager WDM 4.7.x does not require authentication for commands, which allows remote attackers to obtain management access via a crafted query, as demonstrated by a V52 query that triggers a power-off action...

7.5CVSS6.6AI score0.68887EPSS
Exploits11References5
Prion
Prion
added 2012/06/19 8:55 p.m.12 views

Authentication flaw

hagent.exe in Wyse Device Manager WDM 4.7.x does not require authentication for commands, which allows remote attackers to obtain management access via a crafted query, as demonstrated by a V52 query that triggers a power-off action...

7.5CVSS7.2AI score0.68887EPSS
Exploits11References5Affected Software1
Prion
Prion
added 2012/06/19 8:55 p.m.13 views

Buffer overflow

Multiple buffer overflows in Wyse Device Manager WDM 4.7.x allow remote attackers to execute arbitrary code via 1 the User-Agent HTTP header to hserver.dll or 2 unspecified input to hagent.exe...

7.5CVSS8.4AI score0.12772EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2012/06/19 8:0 p.m.57 views

CVE-2009-0693

CVE-2009-0693 concerns Wyse Device Manager (WDM) 4.7.x, where multiple buffer overflows allow remote code execution. Specifically, the issues involve HServer (hserver.dll) accepting a crafted User-Agent header and HAgent (hagent.exe) receiving unspecified input leading to overflow. The vulnerabil...

7.5CVSS8.1AI score0.12772EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2012/06/19 8:0 p.m.19 views

CVE-2009-0693

Multiple buffer overflows in Wyse Device Manager WDM 4.7.x allow remote attackers to execute arbitrary code via 1 the User-Agent HTTP header to hserver.dll or 2 unspecified input to hagent.exe...

7.8AI score0.12772EPSS
Exploits0References4
Cvelist
Cvelist
added 2012/06/19 8:0 p.m.17 views

CVE-2009-0695

hagent.exe in Wyse Device Manager WDM 4.7.x does not require authentication for commands, which allows remote attackers to obtain management access via a crafted query, as demonstrated by a V52 query that triggers a power-off action...

6.6AI score0.68887EPSS
Exploits11References5
CVE
CVE
added 2012/06/19 8:0 p.m.54 views

CVE-2009-0695

Summary of CVE-2009-0695: Wyse Device Manager (WDM) HAgent (hagent.exe) on 4.7.x allows remote commands without authentication, enabling an attacker with network access to obtain management access and trigger actions (e.g., power-off) via crafted queries (e.g., V52). Exploitation is demonstrated ...

7.5CVSS6.7AI score0.68887EPSS
Exploits11References5Affected Software1
CERT
CERT
added 2009/10/13 12:0 a.m.190 views

Wyse Device Manager (WDM) HServer and HAgent contain multiple vulnerabilities

Overview Wyse Device Manager WDM Server and HAgent contain several vulnerabilities. An attacker with network access to WDM components could execute arbitrary code on vulnerable systems. Description Wyse Device Manager WDM, formerly known as Wyse Rapport manages thin clients. Part of the server...

7.5CVSS7.9AI score0.12772EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2009/09/02 12:0 a.m.12 views

Wyse Device Manager HAgent Service Detection

Binary data wysehagentdetect.nbin...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.65 views

Wyse Device Manager Buffer Overflow

Wyse Device Manager is installed on the remote system. The installed version is affected by a buffer overflow vulnerability. By sending a specially crafted request to the server, it may be possible for an unauthorized attacker to crash the server or execute arbitrary commands on the remote system...

7.5CVSS6AI score0.68887EPSS
Exploits11References4
Tenable Nessus
Tenable Nessus
added 2009/07/20 12:0 a.m.110 views

Wyse Device Manager Default FTP Account

The remote FTP server has an account with a known username / password combination, possibly created as part of an installation of Wyse Device Manager. An attacker may be able to use this to gain authenticated access to the system, which could allow for other attacks against the affected applicati...

5.6AI score
Exploits0
Rows per page
Query Builder