CVSS: 6.9EPSS: 0%CPEs: 6EXPL: 0CVE-2011-3337
https://notcve.org/view.php?id=CVE-2011-3337
eEye Audit ID 2499 in eEye Digital Security Audits 2406 through 2423 for eEye Retina Network Security Scanner on HP-UX, IRIX, and Solaris allows local users to gain privileges via a Trojan horse gauntlet program in an arbitrary directory under /usr/local/. eEye Audit ID 2499 en eEye Digital Security Audits 2406 hasta 2423 para eEye Retina Network Security Scanner en HP-UX, IRIX, y Solaris, permite a usuarios locales ganar privilegios a través de un caballo de troya en un directorio de su elección bajo /usr/local/. • http://www.eeye.com/Resources/Security-Center/Research/Security-Advisories/AL20111108 http://www.kb.cert.org/vuls/id/448051 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 13%CPEs: 2EXPL: 2CVE-2009-3859 – eEye Retina WiFi Security Scanner 1.0 - '.rws Parsing' Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2009-3859
Buffer overflow in eEye Retina WiFi Scanner 1.0.8.68, as used in Retina Network Security Scanner 5.10.14, allows user-assisted remote attackers to cause a denial of service (application crash) or execute arbitrary code via a .rws file with a long RWS010 entry. Desbordamiento de búfer en Retina WiFi Scanner v1.0.8.68, usado en Retina Network Security Scanner v5.10.14, permite a atacantes asistidos por el usuario provocar una denegación de servicio (caída de aplicación) o la ejecución de código de su elección a través de un archivo .rws con una entrada RWS010 larga. • https://www.exploit-db.com/exploits/9114 http://osvdb.org/55744 http://research.eeye.com/html/advisories/published/AD20090710.html http://secunia.com/advisories/35786 http://www.exploit-db.com/exploits/9114 http://www.securityfocus.com/bid/35624 http://www.securitytracker.com/id?1022534 http://www.vupen.com/english/advisories/2009/1862 https://exchange.xforce.ibmcloud.com/vulnerabilities/51625 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •