Lucene search
K
ZdiMost viewed

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2017/05/15 12:0 a.m.•41 views

Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10007 Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dbman service, which listens on TCP port...

10CVSS2AI score0.82877EPSS
Exploits8References1
Zero Day Initiative
Zero Day Initiative
•added 2017/03/29 12:0 a.m.•41 views

Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration dataIPChanged Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro InterScan Web Security Virtual Appliance. Authentication is required to exploit this vulnerability. The specific flaw exists within ConfigIPNetwork's saveNetworkConfiguration method...

9CVSS5.1AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/03/29 12:0 a.m.•41 views

Hewlett Packard Enterprise Intelligent Management Center Service Operation Manager Module FileDownloadServlet filePath Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within Service Operation Manager Module's...

7.8CVSS0.8AI score0.04804EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/03/01 12:0 a.m.•41 views

Trend Micro SafeSync for Enterprise save_iscsi_config Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro SafeSync for Enterprise. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

9CVSS7.7AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/10 12:0 a.m.•41 views

Acrobat Reader DC XFA Field Font Size Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the XFA field fo...

6.8CVSS2.9AI score0.03953EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/10 12:0 a.m.•41 views

Adobe Reader DC XSLT output Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within XSLT's...

6.8CVSS3AI score0.2042EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/10/11 12:0 a.m.•41 views

Adobe Acrobat Pro DC XObject stream Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within handling of...

6.8CVSS2.2AI score0.05813EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/09/21 12:0 a.m.•41 views

Hewlett Packard Enterprise Network Automation RMI Registry Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Network Automation. Authentication is not required to exploit this vulnerability. The specific flaw exists within an exposed RMI registry on TCP port 6099. By sending a...

7.5CVSS3.2AI score0.04362EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/07/12 12:0 a.m.•41 views

Adobe Flash DeleteRangeTimelineOperation Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS2AI score0.07391EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/07/12 12:0 a.m.•41 views

Microsoft Edge CGeolocationManager Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Edge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how Microsoft Edge...

6.8CVSS3.1AI score0.14006EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/06/24 12:0 a.m.•41 views

Unitronics VisiLogic OPLC IDE vlp File Parsing Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Unitronics VisiLogic OPLC IDE. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.8CVSS5AI score0.04499EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/05/10 12:0 a.m.•41 views

Adobe Acrobat Pro DC ComboBox field Format action Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handlin...

6.8CVSS3.1AI score0.0641EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/05/10 12:0 a.m.•41 views

Adobe Acrobat Pro DC execDialog Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS5.1AI score0.0641EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/05/10 12:0 a.m.•41 views

Microsoft Internet Explorer Add-on Installer Enhanced Protected Mode Information Disclosure Vulnerability

This vulnerability allows remote attackers to bypass the Enhanced Protected Mode sandbox of vulnerable installations of Microsoft Internet Explorer and disclose file contents. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

4.7CVSS1.8AI score0.15511EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/05/10 12:0 a.m.•41 views

Microsoft Internet Explorer AcquireLineBoxBuilderForLayout Null Array Base Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

5.1CVSS3.5AI score0.16885EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/04/12 12:0 a.m.•41 views

Microsoft Internet Explorer CTableLayout AddRow Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

6.8CVSS4.2AI score0.15764EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/03/08 12:0 a.m.•41 views

Microsoft Windows OleLoadPicture Heap Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS3.4AI score0.58181EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/03/02 12:0 a.m.•41 views

Microsoft Internet Explorer CFontFace Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

6.8CVSS6.5AI score0.19795EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/02/05 12:0 a.m.•41 views

Advantech WebAccess webvrpcs Service BwKrlApi.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable instances of Advantech WebAccess. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the 0x272F IOCTL in the ViewSrv subsystem. A stack-based buffer...

9.3CVSS4.8AI score0.16655EPSS
Exploits9References1
Zero Day Initiative
Zero Day Initiative
•added 2016/02/05 12:0 a.m.•41 views

Advantech WebAccess webvrpcs Service BwpAlarm.dll sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable instances of Advantech WebAccess. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the 0x11178 IOCTL in the BwpAlarm subsystem. A stack-based buffe...

9.3CVSS4.3AI score0.16655EPSS
Exploits9References1
Zero Day Initiative
Zero Day Initiative
•added 2015/12/17 12:0 a.m.•41 views

Microsoft Internet Explorer TextBlock Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to leak sensitive information on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

4.3CVSS5.3AI score0.19795EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/12/14 12:0 a.m.•41 views

(0Day) Apache TomEE Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apache TomEE. Authentication is not required to exploit this vulnerability. The specific flaw exists within the EjbObjectInputStream which accepts and deserializes any Java serialized binary stream...

7.5CVSS9.5AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/12/08 12:0 a.m.•41 views

Wireshark PCAPNG if_filter Arbitrary Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Wireshark. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of PCAPNG...

6.8CVSS5.9AI score0.03037EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/12/08 12:0 a.m.•41 views

Microsoft Windows VBScript Filter Function Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose the contents of memory on applications using the VBScript scripting language on vulnerable installations of Microsoft Windows. Microsoft Internet Explorer is an affected application. User interaction is required to exploit this vulnerability ...

4.3CVSS5.6AI score0.25169EPSS
Exploits1References2
Zero Day Initiative
Zero Day Initiative
•added 2015/12/08 12:0 a.m.•41 views

Adobe Flash AS3 ShaderParameter Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Shader filters. ...

6.8CVSS8.8AI score0.06571EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/12/02 12:0 a.m.•41 views

Unitronics VisiLogic OPLC IDE TeeCommander.ITeeCommander ActiveX Control ChartLink Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Unitronics VisiLogic OPLC IDE . User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within t...

6.8CVSS9.1AI score0.01553EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/12/02 12:0 a.m.•41 views

Hewlett-Packard LoadRunner Virtual Table Server import_database Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard LoadRunner. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Virtual Table Server, which listens by default on port 4000. By providi...

7.5CVSS7.6AI score0.0375EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/11/20 12:0 a.m.•41 views

Tibbo AggreGate SCADA/HMI Apache Axis AdminService Arbitrary Class Instantiation Privilege Escalation Vulnerability

This vulnerability allows attackers to elevate privileges on vulnerable installations of Tibbo AggreGate SCADA/HMI. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Windows servi...

7.2CVSS6AI score0.00402EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/11/10 12:0 a.m.•41 views

Adobe Flash AS2 MovieClip globalToLocal Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the MovieClip object...

6.8CVSS6.4AI score0.06171EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/10/13 12:0 a.m.•41 views

Adobe Reader DC ambientIlluminationColor Information Disclosure Vulnerability

This vulnerability allows remote attackers to gain information about the layout of memory on vulnerable installations of Adobe Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

5CVSS6.3AI score0.03836EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/10/13 12:0 a.m.•41 views

Adobe Flash TextFormat tabStops Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the TextFormat...

6.8CVSS6.4AI score0.07982EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/10/13 12:0 a.m.•41 views

Microsoft Windows VBScript Filter Function Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code in applications using the VBScript scripting language running on vulnerable installations of Microsoft Windows. Microsoft Internet Explorer is an affected application. User interaction is required to exploit this vulnerability i...

7.5CVSS7.9AI score0.25081EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/10/13 12:0 a.m.•41 views

Microsoft Office Excel calculatedColumnFormula Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within processin...

6.8CVSS6.2AI score0.20151EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/10/13 12:0 a.m.•41 views

Microsoft Office Visio UML Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within UML...

6.8CVSS6.5AI score0.22491EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/10/07 12:0 a.m.•41 views

Microsoft Internet Explorer CIERegistryHelper::SetSingleValue Sandbox Escape Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

4.4CVSS6.3AI score0.07101EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/09/08 12:0 a.m.•41 views

Microsoft Internet Explorer CImgTaskSvgDoc Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to cause a use-after-free condition on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

6.8CVSS6.5AI score0.23758EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/08/11 12:0 a.m.•41 views

Microsoft Internet Explorer stack Property Descriptor Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

5.4CVSS6.4AI score0.23758EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/08/11 12:0 a.m.•41 views

Microsoft Internet Explorer Filesystem Elevation of Privilege Vulnerability

This vulnerability allows attackers to escalate privileges on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling o...

6.9CVSS6AI score0.07161EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/05/12 12:0 a.m.•41 views

Adobe Acrobat Reader app.Monitors().select nonDocument Javascript API Restrictions Bypass Vulnerability

This vulnerability allows remote attackers to bypass API restrictions on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.4AI score0.09917EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/05/12 12:0 a.m.•41 views

Microsoft Internet Explorer CTitleElement Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.4AI score0.26881EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/04/15 12:0 a.m.•41 views

Microsoft Internet Explorer Layout::FlowBoxBuilder Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS9AI score0.15789EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/04/08 12:0 a.m.•41 views

(Pwn2Own) Apple Safari Uninitialized Buffer Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS7.5AI score0.02762EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/04/03 12:0 a.m.•41 views

ManageEngine OpManager MultipartRequestServlet filename File Upload Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ManageEngine OpManager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MultipartRequestServlet servlet. The issue lies in the failure to sanitize...

10CVSS7AI score0.39121EPSS
Exploits6References1
Zero Day Initiative
Zero Day Initiative
•added 2015/03/10 12:0 a.m.•41 views

Microsoft Internet Explorer CDOMTextNode Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.3AI score0.20344EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2015/02/27 12:0 a.m.•41 views

(0Day) WebGate Control Center WESPDiscovery.WESPDiscoveryCtrl.1 TCPDiscovery Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of WebGate Control Center. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS8.7AI score0.02929EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
•added 2015/02/23 12:0 a.m.•41 views

Mozilla Firefox DirectionalityUtils Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS9.3AI score0.03978EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/02/10 12:0 a.m.•41 views

VMware Workstation Authorization Service Denial-of-Service Vulnerability

This vulnerability allows remote attackers to cause a denial-of-service on vulnerable installations of VMWare Workstation. Authentication is not required to exploit this vulnerability. The specific flaw exists within the VMWare Authorization service, which is listening on port 912. By sending a...

5CVSS4.4AI score0.00825EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/10/14 12:0 a.m.•41 views

Hewlett-Packard Sprinter TTF16.ocx DefaultFontName Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Sprinter. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability is found in Tidestone Formula One...

6.8CVSS6.7AI score0.06936EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/10/01 12:0 a.m.•41 views

Hewlett-Packard Network Node Manager ovopi.dll Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within ovopi.dll which listens by default on UDP port 696. When parsing...

10CVSS7.2AI score0.65435EPSS
Exploits5References1
Zero Day Initiative
Zero Day Initiative
•added 2014/10/01 12:0 a.m.•41 views

Hewlett-Packard Network Node Manager ovopi.dll Option -D Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within ovopi.dll which listens by default on a UDP port 696. When parsin...

10CVSS7.2AI score0.65435EPSS
Exploits5References1
Total number of security vulnerabilities5000