This Metasploit module exploits a stack buffer overflow in HP OpenView Network Node Manager 7.53 prior to NNM_01213 without the SSRT100649 hotfix. By specifying a long 'textFile' argument when calling the 'webappmon.exe' CGI program, an attacker can cause a stack-based buffer overflow and execute arbitrary code. The vulnerable code is within the "_OVBuildPath" function within "ov.dll". There are no stack cookies, so exploitation is achieved by overwriting the saved return address. The vulnerability is due to the use of the function "_OVConcatPath" which finally uses "strcat" in a insecure way. User controlled data is concatenated to a string which contains the OpenView installation path. To achieve reliable exploitation a directory traversal in OpenView5.exe (OSVDB 44359) is being used to retrieve OpenView logs and disclose the installation path.
d931eb96f3799819a223e13af334d81aSyneto UTM WAF version 1.4.2 suffers from multiple cross site scripting vulnerabilities.
85482d4f48445334d6ac8d7cc766a567Avaya WinPDM UniteHostRouter versions 3.8.2 and below remote pre-auth buffer overflow exploit that binds a shell to port 4444.
2f0e85ab508a09e0ebb1db87894629abVLC versions 1.2.0 and 1.1.11 divide by zero denial of service exploit that creates a malicious .ape file.
933f6ea3116f2ed4a0de60b32f64934fThis is a brief whitepaper discussing how to perform forensics on iOS 5 on the iPhone.
782903866dd7d55143c6835188eda2feThis is a slim exploit that will change the WhatsApp user status remotely.
a8c7cda299b3c5e20bebd6507dbf512dSecunia Security Advisory - Multiple vulnerabilities have been reported in Horde IMP, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
634fdb44a4fccdaa23b5acda17cc54c9Secunia Security Advisory - Digital Security Research Group has reported a security issue in KingSCADA, which can be exploited by malicious, local users to disclose sensitive information.
3194e9ee9abb5d8ff194aec6f078536dSecunia Security Advisory - A vulnerability has been reported in Cisco Digital Media Manager, which can be exploited by malicious users to bypass certain security restrictions.
5a093d14f1babf7877b56d8908fd679fSecunia Security Advisory - Oracle has acknowledged a vulnerability in Squid included in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
3690b1978e7a6403628b6fb6b6ef1519Secunia Security Advisory - Oracle has acknowledged multiple vulnerabilities in Wireshark included in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
dc49d68dc1715445a181d0283a334b55Secunia Security Advisory - SUSE has issued an update for libqt4. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
e8323abcfa84aeed4bd9b4d385c6fd0eSecunia Security Advisory - Oracle has acknowledged multiple vulnerabilities in Thunderbird included in Solaris, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.
d0c99bf94dc460bb02bd26dc07b87ba3Secunia Security Advisory - A vulnerability has been reported in OpenSSL, which can be exploited by malicious people to cause a DoS (Denial of Service).
2fc5d2443311834ff5d244c794e0a23cSecunia Security Advisory - Red Hat has issued an update for php. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
2d3a45334dd33546f50d31a3221e30afSecunia Security Advisory - A security issue has been reported in Cisco TelePresence System, which can be exploited by malicious people to compromise a vulnerable system.
0a5ffef1a2c3c762f2c0ba3521e1ac95Secunia Security Advisory - HP has acknowledged multiple security issues in HP Business Availability Center and HP Business Service Management, which can be exploited by malicious people to bypass certain security restrictions.
321df681b6d0494e37776e8af57ec99dSecunia Security Advisory - Multiple vulnerabilities have been reported in Horde Groupware Webmail Edition, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
f758b16e175b92afacab6591e16971b1Secunia Security Advisory - Two vulnerabilities have been discovered in the uCan Post plugin for WordPress, which can be exploited by malicious users and malicious people to conduct script insertion attacks.
6a954346c2d0f758c87b7dcaabc93246Secunia Security Advisory - Hitachi has acknowledged a vulnerability in multiple Hitachi Cosminexus products, which can be exploited by malicious people to cause a DoS (Denial of Service).
8433ae39643ecceee5038a2f943f1a53Secunia Security Advisory - SUSE has issued an update for tomcat6. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
7a3ded77ed185f9a3456513be9f547d3Secunia Security Advisory - A vulnerability has been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service).
76b119cf72ecee587dc701b9231b5c91Secunia Security Advisory - Tielei Wang has discovered a vulnerability in IBM Lotus Symphony, which can be exploited by malicious people to compromise a user's system.
c67904e64e5354b55c65a6696010fb75Secunia Security Advisory - Hitachi has reported a vulnerability in some COBOL2002 products, which can be exploited by malicious users to compromise a vulnerable system.
e099b87f68a40cb3839074e26f6370ebSecunia Security Advisory - Hitachi has reported a vulnerability in some COBOL2002 products, which can be exploited by malicious users to compromise a vulnerable system.
dadf3ec59164c409926fdb71b672a6d7
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed