This Metasploit module exploits a stack buffer overflow in HP OpenView Network Node Manager 7.53 prior to NNM_01213 without the SSRT100649 hotfix. By specifying a long 'textFile' argument when calling the 'webappmon.exe' CGI program, an attacker can cause a stack-based buffer overflow and execute arbitrary code. The vulnerable code is within the "_OVBuildPath" function within "ov.dll". There are no stack cookies, so exploitation is achieved by overwriting the saved return address. The vulnerability is due to the use of the function "_OVConcatPath" which finally uses "strcat" in a insecure way. User controlled data is concatenated to a string which contains the OpenView installation path. To achieve reliable exploitation a directory traversal in OpenView5.exe (OSVDB 44359) is being used to retrieve OpenView logs and disclose the installation path.
26a5037665e807931d129cb3332a8855a52fd678003e154545e4f756a1452924Syneto UTM WAF version 1.4.2 suffers from multiple cross site scripting vulnerabilities.
86fd75b3b8a36880d2e4487fb504c4ad03257f52bbe27c0d45e03b050771f37cAvaya WinPDM UniteHostRouter versions 3.8.2 and below remote pre-auth buffer overflow exploit that binds a shell to port 4444.
e60668fa5b27c23dd1c833eb25b44a403111b5eef0cdf05eb8fb7b3e13fe0967VLC versions 1.2.0 and 1.1.11 divide by zero denial of service exploit that creates a malicious .ape file.
1fc02c07be4fb6c8bec8cc2ea9f95b4f25bbd2a8c2df3caa1f313b10455793feThis is a brief whitepaper discussing how to perform forensics on iOS 5 on the iPhone.
343b3862d39127f659978159079fb88e96475725f86982f827ebd28b23cbf412This is a slim exploit that will change the WhatsApp user status remotely.
8f1798fb095f631b8c7bd66e9d6ce857746b6d417745cd1e813ce1524b09572dSecunia Security Advisory - Multiple vulnerabilities have been reported in Horde IMP, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
4e328a06744988e546e3d40f6a6afafb3b3946072c20e89dc936838196dc7642Secunia Security Advisory - Digital Security Research Group has reported a security issue in KingSCADA, which can be exploited by malicious, local users to disclose sensitive information.
418e6359dad865d8269b0f1ce12980906905616994e8a238e354561e4ea7b066Secunia Security Advisory - A vulnerability has been reported in Cisco Digital Media Manager, which can be exploited by malicious users to bypass certain security restrictions.
448cfd29ba436df3a34a3fadd8b9156e8b423f415d02f2ffa552498dfc82730cSecunia Security Advisory - Oracle has acknowledged a vulnerability in Squid included in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
203db2eb1616aeb486329537ac8b80de3d7e00518c9bc0df5d6ff4de013efed5Secunia Security Advisory - Oracle has acknowledged multiple vulnerabilities in Wireshark included in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
517f08c81e241e2303238f507619e085cf39022662bc1fc64fbf42c81650afa4Secunia Security Advisory - SUSE has issued an update for libqt4. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
08cfb12057359a7c4df85911c4730b1218ecb212636d1113d0d24a43bd648636Secunia Security Advisory - Oracle has acknowledged multiple vulnerabilities in Thunderbird included in Solaris, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.
5b8d9cecf677a237b7977fdc2a1bd0750c860435eaafcafb687f64d470c7168fSecunia Security Advisory - A vulnerability has been reported in OpenSSL, which can be exploited by malicious people to cause a DoS (Denial of Service).
9bd83506548c3854c380a48a63d219006938380cfc918e3cf531e56b28eaeb02Secunia Security Advisory - Red Hat has issued an update for php. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
31361c8d9cf23f1f766d3f2b313347fddbc78fa1a843a0fbe5741ba724ce1900Secunia Security Advisory - A security issue has been reported in Cisco TelePresence System, which can be exploited by malicious people to compromise a vulnerable system.
d585093d03c37059d442d0e561c6f478bd113a681d877b214fdf1508518aef5eSecunia Security Advisory - HP has acknowledged multiple security issues in HP Business Availability Center and HP Business Service Management, which can be exploited by malicious people to bypass certain security restrictions.
9aa81196687e6071f5c0dfbf163e0a3d3545391b398fcffe8132c232830c0415Secunia Security Advisory - Multiple vulnerabilities have been reported in Horde Groupware Webmail Edition, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
89da727f14c2d24e819f32c4b5e1acaca9fb6cdb8fd7e5c8382985cbd278c8bbSecunia Security Advisory - Two vulnerabilities have been discovered in the uCan Post plugin for WordPress, which can be exploited by malicious users and malicious people to conduct script insertion attacks.
9464b7b320d26c23db764660901cb642570a0d85e7aa9ecd788dd97e03ad1ef0Secunia Security Advisory - Hitachi has acknowledged a vulnerability in multiple Hitachi Cosminexus products, which can be exploited by malicious people to cause a DoS (Denial of Service).
affa2d01e57fef2746e5b0a73394d73eb4c6c99a372da8cd7a778fb58ced0357Secunia Security Advisory - SUSE has issued an update for tomcat6. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
1b466d082d2267ca71f83a08144d6955700aec8863f9090a175f90a0cac0bd94Secunia Security Advisory - A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service).
343df56cb96efed48a2cdc4242a0e88be5b0e025c67d6d5b9e87c798a124aab4Secunia Security Advisory - Tielei Wang has discovered a vulnerability in IBM Lotus Symphony, which can be exploited by malicious people to compromise a user's system.
200a052e79a32fd0a1d987c6759a00720383cc07bf77d12c0dc9bceafcb8dff2Secunia Security Advisory - Hitachi has reported a vulnerability in some COBOL2002 products, which can be exploited by malicious users to compromise a vulnerable system.
61b1a5e4ea533bcf61a1e61bc4021a90875228e3880678c3d7a59528866e5d18Secunia Security Advisory - Hitachi has reported a vulnerability in some COBOL2002 products, which can be exploited by malicious users to compromise a vulnerable system.
b9ee7581ca1e751d798f7a14989869372463d8d01421a376de91093341924a6d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed