20 results (0.008 seconds)

CVSS: 10.0EPSS: 97%CPEs: 139EXPL: 43

CVE-2019-0708 – Microsoft Remote Desktop Services Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2019-0708

A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'. Existe una vulnerabilidad de ejecución remota de código en Remote Desktop Services, anteriormente conocido como Terminal Services, cuando un atacante no autenticado se conecta al sistema de destino mediante RDP y envía peticiones especialmente diseñadas, conocida como 'Remote Desktop Services Remote Code Execution Vulnerability'. The RDP termdd.sys driver improperly handles binds to internal-only channel MS_T120, allowing a malformed Disconnect Provider Indication message to cause a use-after-free. With a controllable data/size remote nonpaged pool spray, an indirect call gadget of the freed channel is used to achieve arbitrary code execution. Microsoft Remote Desktop Services, formerly known as Terminal Service, contains an unspecified vulnerability that allows an unauthenticated attacker to connect to the target system using RDP and send specially crafted requests. • https://www.exploit-db.com/exploits/47120 https://www.exploit-db.com/exploits/46946 https://www.exploit-db.com/exploits/47416 https://www.exploit-db.com/exploits/47683 https://github.com/k8gege/CVE-2019-0708 https://github.com/n1xbyte/CVE-2019-0708 https://github.com/victor0013/CVE-2019-0708 https://github.com/cbwang505/CVE-2019-0708-EXP-Windows https://github.com/Leoid/CVE-2019-0708 https://github.com/p0p0p0/CVE-2019-0708-exploit https://github.com/worawit • CWE-416: Use After Free •

CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0

CVE-2017-15329

https://notcve.org/view.php?id=CVE-2017-15329

Huawei UMA V200R001C00 has a SQL injection vulnerability in the operation and maintenance module. An attacker logs in to the system as a common user and sends crafted HTTP requests that contain malicious SQL statements to the affected system. Due to a lack of input validation on HTTP requests that contain user-supplied input, successful exploitation may allow the attacker to execute arbitrary SQL queries. Huawei UMA V200R001C00 tiene una vulnerabilidad de inyección SQL en el módulo de operación y mantenimiento. Un atacante inicia sesión en el sistema como usuario común y envía peticiones HTTP manipuladas que contienen instrucciones SQL al sistema afectado. • http://www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20171116-01-uma-en • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0

CVE-2017-8125

https://notcve.org/view.php?id=CVE-2017-8125

The UMA product with software V200R001 and V300R001 has a cross-site scripting (XSS) vulnerability due to insufficient input validation. An attacker could craft malicious links or scripts to launch XSS attacks. El producto UMA con software V200R001 y V300R001 tiene una vulnerabilidad de Cross-Site Scripting (XSS) debido a una validación de entradas insuficiente. Un atacante podría manipular enlaces o scripts maliciosos para lanzar ataques de XSS. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170612-01-uma-en • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 2.3EPSS: 0%CPEs: 2EXPL: 0

CVE-2017-8118

https://notcve.org/view.php?id=CVE-2017-8118

The UMA product with software V200R001 and V300R001 has an information leak vulnerability. An attacker could exploit them to obtain some sensitive information, causing information leak. El producto UMA con software V200R001 y V300R001 tiene una vulnerabilidad de filtrado de información. Un atacante podría explotarla para obtener información sensible, provocando un filtrado de información. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170612-01-uma-en • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0

CVE-2017-8128

https://notcve.org/view.php?id=CVE-2017-8128

The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit these vulnerabilities to gain elevated privileges. El producto UMA con software V200R001 y V300R001 tiene una vulnerabilidad de elevación de privilegios debido a una validación insuficiente o al procesamiento incorrecto de parámetros. Un atacante podría manipular paquetes específicos para explotar estas vulnerabilidades y obtener privilegios elevados. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170612-01-uma-en • CWE-20: Improper Input Validation •