78 matches found
CVE-2011-3287
Technical details for CVE-2011-3287 are not provided in the connected documents. The materials reference related issues (e.g., CVE-2003-1564) but do not describe affected products, impact, or fixes for this CVE.
Jabber Extensible Communications Platform and Cisco Unified Presence XML Denial of Service Vulnerability
A denial of service DoS vulnerability exists in Jabber Extensible Communications Platform Jabber XCP and Cisco Unified Presence. An unauthenticated, remote attacker could exploit this vulnerability by sending malicious XML to an affected server. Successful exploitation of this vulnerability could...
CVE-2011-2299
Unspecified vulnerability in Oracle SPARC Enterprise M3000, M4000, M5000, M8000, and M9000 XCP 1101 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to XSCF Control Package XCP...
CVE-2011-2299
CVE-2011-2299 affects Oracle SPARC Enterprise M3000/M4000/M5000/M8000/M9000 XCP 1101 and earlier, related to the XSCF Control Package (XCP). The vulnerability is described as unspecified with potential impact to confidentiality, integrity, and availability, and requires no user interaction. The a...
CVE-2011-2299
Unspecified vulnerability in Oracle SPARC Enterprise M3000, M4000, M5000, M8000, and M9000 XCP 1101 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to XSCF Control Package XCP...
November, 2005: Sony/BMG Digital Rights Management Rootkit
Sony helped create the home entertainment industry by successfully defending the right of its customers to copy movies for personal use with the help of its Betamax technology, of course all the way to the U.S. Supreme Court. That made the debacle of the company’s decision, two decades later, to...
CVE-2007-6360
The CVE-2007-6360 issue affects Sun eXtended System Control Facility (XSCF) Control Package (XCP) firmware before 1050 on SPARC Enterprise M4000, M5000, M8000, and M9000 servers. The vulnerability allows remote attackers to trigger memory exhaustion via network traffic (telnet, ssh, or http), cau...
CVE-2007-6360
Unspecified vulnerability in the Sun eXtended System Control Facility XSCF Control Package XCP firmware before 1050 on SPARC Enterprise M4000, M5000, M8000, and M9000 servers allows remote attackers to cause a denial of service reboot via 1 telnet, 2 ssh, or 3 http network traffic that triggers...
Sun SPARC XSCF Control Package (XCP)固件未明拒绝服务漏洞
Sun SPARC XSCF是一款扩展系统控制设备。 Sun SPARC XSCF固件的telnet1, Secure Shell SSH, 和httpd存在安全问题,远程攻击者可以利用漏洞对设备进行拒绝服务攻击。 目前没有详细漏洞细节提供。 Sun XCP 1040 补丁下载: Sun XCP 1040 Sun OPL-M4-5-8-9000-XCP-1050-SP-G-F http://javashoplm.sun.com/ECom/docs/Welcome.jsp?StoreId=8&PartDetailId...
CVE-2005-3650
The CodeSupport.ocx ActiveX control, as used by Sony to uninstall the First4Internet XCP DRM, has "safe for scripting" enabled, which allows remote attackers to execute arbitrary code by calling vulnerable functions such as RebootMachine, IsAdministrator, and ExecuteCode...
CVE-2005-3650
The CVE-2005-3650 entry concerns the CodeSupport.ocx ActiveX control used by Sony to uninstall First4Internet XCP DRM. The vulnerability arises because the control’s “safe for scripting” setting enables remote attackers to call vulnerable methods (e.g., RebootMachine, IsAdministrator, ExecuteCode...
First4Internet XCP Uninstallation CodeSupport.ocx ActiveX Control Arbitrary Code Execution
The remote host contains an ActiveX control from First4Internet called CodeSupport. This control was likely installed by requesting an uninstaller for Sony's XCP digital rights management software. CodeSupport is marked as safe for scripting and makes several methods available for any web page to...
XCP DRM Software Detection
First 4 Internet's Extended Copy Protection XCP digital rights management software is installed on the remote Windows host. While it is not malicious per se, the software hides files, processes, and registry keys / values from ordinary inspection, which has been exploited by several viruses to hi...
First4Internet CodeSupport ActiveX controls incorrectly marked 'safe for scripting'
Overview An ActiveX control used to uninstall XCP Digital Rights Management DRM software made by First 4 Internet and distributed on some Sony BMG audio CDs is marked "Safe for scripting" Description XCP Digital Rights Management DRM software by First 4 Internet, which is distributed by some Sony...
Sony XCP-DRM Rootkit Detection
Binary data 3292.prm...
CVE-2005-3474
The aries.sys driver in Sony First4Internet XCP DRM software hides any file, registry key, or process with a name that starts with "$sys$", which allows attackers to hide activities on a system that uses XCP...
CVE-2005-3474
The CVE-2005-3474 entry concerns the aries.sys driver in Sony First4Internet XCP DRM software. The driver hides any file, registry key, or process whose name begins with "$sys$", enabling an attacker to conceal activity on a system using XCP. Affected component: aries.sys within the XCP DRM stack...
CVE-2005-3474
The aries.sys driver in Sony First4Internet XCP DRM software hides any file, registry key, or process with a name that starts with "$sys$", which allows attackers to hide activities on a system that uses XCP...