This module uses an Authentication Bypass vulnerability in Dell EMC Data Protection Advisor and an OS Command Injection vulnerability to gain arbitrary code execution on the affected system.
The specific flaw exists within the parsing of a RSS file. The issue lies in the failure to properly validate the length of user-supplied data prior to copying it to a fixed-length buffer.
DiskSavvy server is prone to a buffer-overflow vulnerability (using port 9124), this can trigger an overflow in a finite-sized internal memory buffer, and install an agent.
In Flexense Disk Pulse Enterprise v10.1.18, the Control Protocol suffers from a denial of service vulnerability. DiskPulse server is prone to a buffer-overflow SEH vulnerability (using port 80).
DiskBoss server is prone to a buffer-overflow vulnerability (using port 80), this can trigger an overflow in a finite-sized internal memory buffer, and install an agent.
Drupal is prone to an OS command injection vulnerability that allows attackers to take advantage of an improper validation of user-supplied data in the Form API Ajax Requests.
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of software utilizing VX Search Web Server. The vulnerability is caused due to a boundary error within VX Search Web Server when processing HTTP command name POST Request. This can be exploited to cause a stack-based buffer overflow via an overly long, specially-crafted argument passed to the affected command. Authentication is not required to exploit this vulnerability.
This vulnerability allows local attackers to escalate privileges on vulnerable installations of MalwareFox Antimalware. An attacker must first obtain the ability to execute normal privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing of crafted IOCTL by the zam64.sys kernel driver. The issue lies in the failure to properly validate user-supplied data which can allows a non-privileged process to register itself. An attacker can leverage this vulnerability to execute arbitrary code under the context of kernel. This module will elevate the privileges of the current agent instead of installing a new one.
This module runs a malicious web server on the Core Impact Console and waits for an unsuspecting user to trigger the exploit by connecting to it.
A Buffer Overflow exists in AllPlayer when parsing .m3u files. The vulnerability is caused due to a boundary error when handling a crafted .m3u files.