This Metasploit module exploits a vulnerability found in NetDecision's HTTP service (located in C:\Program Files\NetDecision\Bin\HttpSvr.exe). By supplying a long string of data to the URL, an overflow may occur if the data gets handled by HTTP Server's active window. In other words, in order to gain remote code execution, the victim is probably looking at HttpSvr's window.
b0360c6608a9f7f825bb2a16c5e986f0705fab59b76d7d1c6e39262c2c2249bcnginx versions prior to 1.0.14 stable and 1.1.7 development suffer from an information leak vulnerability when receiving a malformed HTTP response.
4a5c29ad6c7a3904436207e603d5eb2996ff11a7f07c3753916e4e8fb92b76bdInvision Power Board version 3.2.3 suffers from a cross site scripting vulnerability.
337cc9286aab3941b0204410bfcd4c1c12a77fc832a99667e00028b7809f07a9LivePerson.net suffers from a cross site scripting vulnerability.
b6c55c3f09f9b1d5df48ccd43fcdb9c01586856379a4c5ecc18abc5209bf37abSecunia Security Advisory - A weakness has been reported in lshell, which can be exploited by malicious, local users to bypass certain security restrictions.
775428138f4a3c7fd83d18e350415507cd4e0323550818ce592491431fc06462Secunia Security Advisory - A vulnerability has been reported in Cisco Firewall Services Module (FWSM), which can be exploited by malicious people to cause a DoS (Denial of Service).
08958539862fcc9e732cfb70676da045a3c95613c342fc221d2c9fb507f14f96Secunia Security Advisory - A vulnerability has been reported in Adobe ColdFusion, which can be exploited by malicious people to cause a DoS (Denial of Service).
cab1aa7969bd3e1c2f57c1d7f934eccdaf3e1adcf27b4da64c66a218a07f94d9Secunia Security Advisory - Red Hat has issued an update for thunderbird. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, disclose certain sensitive information, and compromise a user's system.
e74e4b508701e153d7ae5e91b39c421be373a681b436eef88cfd6cc84fa810d8Secunia Security Advisory - Multiple vulnerabilities have been reported in Mozilla Firefox and Thunderbird, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a user's system.
034274b507700a1c0fb79d95770b9d49bda0d15d1e0703c58ce019b9de590423Secunia Security Advisory - Niket Khosla has reported a vulnerability in Aurora WebOPAC, which can be exploited by malicious people to conduct SQL injection attacks.
699990be26fae9dd8bf0c8bf1f346610929b109ee7003e6f840626b8c83617c1Secunia Security Advisory - A vulnerability has been reported in the Language Icons module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
197376f0c30459774e98f443c0329999ae22c386129bc648618ca6fa8a3d7c3eSecunia Security Advisory - A vulnerability has been reported in the Fancy Slide module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
4ff7f321d76ac2af09b7c2f44af0049473fe8ddbb285f9d157b79e6deb07bee4Secunia Security Advisory - A vulnerability has been discovered in EncapsGallery, which can be exploited by malicious people to conduct SQL injection attacks.
1f4b3e3cd51ff8bfaf3e0f78ef5ddb5616531fb285032ab3654a0b622079b1dfSecunia Security Advisory - A vulnerability has been reported in the Views Language Switcher module for Drupal, which can be exploited by malicious people to conduct cross-site scripting attacks.
0d8fd7e21bc786fb0292f581de45aa52f900c3f30cf1986b0884263b6d6696cbSecunia Security Advisory - Multiple vulnerabilities have been reported in Cisco Adaptive Security Appliances (ASA), which can be exploited by malicious people to cause a DoS (Denial of Service).
04f94b5e9668c52ce3e7f50859dae731c540f71605f3dcd95f5cb07bebd47236Secunia Security Advisory - Two vulnerabilities have been reported in Barnowl, which can be exploited by malicious people to cause a DoS (Denial of Service).
9615811ff37542e91191af82da763d7253dc576d265679d20761cbab41218981Secunia Security Advisory - A vulnerability has been reported in Ad Management Yoga, which can be exploited by malicious people to conduct cross-site request forgery attacks.
f94ccf78790ab178187cf0047d4b4b05d40b63ff5f719e5df3b339bf5a33008fSecunia Security Advisory - A vulnerability has been reported in Cisco Adaptive Security Appliances, which can be exploited by malicious people to compromise a user's system.
d2a4d17b2e4a22fddd19853e49d3bd37ca40b61fd337fa4af3abd1b48a7c33e2Secunia Security Advisory - Luigi Auriemma has discovered a vulnerability in Epson Event Manager, which can be exploited by malicious people to cause a DoS (Denial of Service).
6d3c6deb1b0eafccc65a5985b341b890b42b240355058c121e8dfaa5bdd97129Secunia Security Advisory - Luigi Auriemma has discovered multiple vulnerabilities in Presto! PageManager, which can be exploited by malicious people to disclose potentially sensitive information, cause a DoS (Denial of Service), and compromise a vulnerable system.
9758a95c4503b9d5c8b4a38005a1839b574b353ab36d8c3ae774b07946333ac2Secunia Security Advisory - A weakness has been reported in nginx, which can be exploited by malicious people to disclose certain sensitive information.
12b486887616aeba60bef80c6bd7ce4d1173691ed7169ae37a06bab1f00a8c64Secunia Security Advisory - Two vulnerabilities have been reported in the CKEditor and FCKeditor modules for Drupal, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to conduct cross-site scripting attacks.
70bea56e02dbc26a69e840cf0e033b69a0b2282d7355f55191fb3974c32ec641OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.
4d9f0a594a9a89b28e1a04a9504c04104f6508ee27ad1e0efdd17a7a6dbbeeeePresto! PageManager versions 9.01 and below suffer from heap overflow, arbitrary file downloading, and denial of service vulnerabilities.
83a76aea3ab82f086da4968e6872b1b1c4b95fbc01ee1f522767a9d9ae1dfbfbSockso versions 1.5 and below suffer from a directory traversal vulnerability.
77408140ee546552e2117da9511f6d9163aadd9b1c364cf5c48df280a7970071
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed