Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

management agents for servers vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv2
CVE-1999-1355
BMC Patrol component, when installed with Compaq Insight Management Agent 4.23 and previous versions, or Management Agents for Servers 4.40 and previous versions, creates a PFCUser account with a default password and potentially dangerous privileges.
Compaq Insight Management AgentCompaq Management Agents For Servers
4.6
CVSSv2
CVE-2001-0728
Buffer overflow in Compaq Management Agents prior to 5.2, included in Compaq Web-enabled Management Software, allows local users to gain privileges.
Compaq Management Agents
10
CVSSv2
CVE-2001-0134
Buffer overflow in cpqlogin.htm in web-enabled agents for various Compaq management software products such as Insight Manager and Management Agents allows remote malicious users to execute arbitrary commands via a long user name.
Compaq Foundation Agents 1.0Compaq Foundation Agents 2.1Compaq Insight Manager Xe 1.0Compaq Insight Manager Xe 1.21Compaq Open San Manager 1.0Compaq Sanworks Resource Monitor 1.0Compaq Storage Allocation Reporter 1.0Compaq Armada Insight Manager 4.20Compaq Armada Insight Manager 4.20jCompaq Insight Management Agent 4.37eCompaq Insight Management Desktop Web Agent 3.7Compaq Management Agents 4.30jCompaq Management Agents 4.35jCompaq Survey Utility 2.33Compaq System Healthcheck 3.0Compaq Foundation Agents 4.0Compaq Foundation Agents 4.90Compaq Intelligent Cluster Administrator 1.0Compaq Intelligent Cluster Administrator 2.1Compaq Survey Utility 2.17Compaq Survey Utility 2.18Compaq Enterprise Volume Manager-command Scripter 1.0
7.2
CVSSv2
CVE-2005-3886
Unspecified vulnerability in Cisco Security Agent (CSA) 4.5.0 and 4.5.1 agents, when running on Windows systems, allows local users to bypass protections and gain system privileges by executing certain local software.
10
CVSSv2
CVE-2002-0013
Vulnerabilities in the SNMPv1 request handling of a large number of SNMP implementations allow remote malicious users to cause a denial of service or gain privileges via (1) GetRequest, (2) GetNextRequest, and (3) SetRequest messages, as demonstrated by the PROTOS c06-SNMPv1 test...
Snmp Snmp
10
CVSSv2
CVE-2002-0012
Vulnerabilities in a large number of SNMP implementations allow remote malicious users to cause a denial of service or gain privileges via SNMPv1 trap handling, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into m...
Snmp Snmp
5
CVSSv2
CVE-2013-1654
Puppet 2.7.x prior to 2.7.21 and 3.1.x prior to 3.1.1, and Puppet Enterprise 2.7.x prior to 2.7.2, does not properly negotiate the SSL protocol between client and master, which allows remote malicious users to conduct SSLv2 downgrade attacks against SSLv3 sessions via unspecified...
Puppetlabs Puppet 2.7.19Puppetlabs Puppet 2.7.20Puppet Puppet 2.7.16Puppet Puppet 2.7.14Puppet Puppet 2.7.4Puppet Puppet 2.7.3Puppet Puppet 2.7.17Puppet Puppet 2.7.13Puppet Puppet 2.7.8Puppet Puppet 2.7.9Puppet Puppet 2.7.11Puppet Puppet 2.7.18Puppetlabs Puppet 2.7.0Puppet Puppet 2.7.7Puppet Puppet 2.7.5Puppet Puppet 2.7.6Puppet Puppet 2.7.2Puppetlabs Puppet 2.7.1Puppet Puppet 2.7.12Puppet Puppet 2.7.10Puppet Puppet Enterprise 3.1.0Canonical Ubuntu Linux 11.10
7.5
CVSSv2
CVE-2013-1655
Puppet 2.7.x prior to 2.7.21 and 3.1.x prior to 3.1.1, when running Ruby 1.9.3 or later, allows remote malicious users to execute arbitrary code via vectors related to "serialized attributes."
Puppetlabs Puppet 2.7.20Puppetlabs Puppet 2.7.1Puppetlabs Puppet 2.7.0Puppet Puppet 2.7.16Puppet Puppet 2.7.3Puppet Puppet 2.7.11Puppet Puppet 2.7.2Puppet Puppet 2.7.13Puppet Puppet 2.7.8Puppet Puppet 2.7.10Puppet Puppet Enterprise 3.1.0Puppet Puppet 2.7.18Puppet Puppet 2.7.17Puppet Puppet 2.7.9Puppet Puppet 2.7.4Puppetlabs Puppet 2.7.19Puppet Puppet 2.7.6Puppet Puppet 2.7.7Puppet Puppet 2.7.5Puppet Puppet 2.7.14Puppet Puppet 2.7.12
6.5
CVSSv2
CVE-2013-2274
Puppet 2.6.x prior to 2.6.18 and Puppet Enterprise 1.2.x prior to 1.2.7 allows remote authenticated users to execute arbitrary code on the puppet master, or an agent with puppet kick enabled, via a crafted request for a report.
Puppet Puppet 2.6.14Puppet Puppet 2.6.12Puppet Puppet 2.6.1Puppet Puppet 2.6.8Puppet Puppet 2.6.0Puppet Puppet 2.6.15Puppet Puppet 2.6.11Puppet Puppet 2.6.10Puppet Puppet 2.6.5Puppetlabs Puppet 2.6.17Puppet Puppet 2.6.16Puppet Puppet 2.6.4Puppet Puppet 2.6.3Puppet Puppet 2.6.2Puppet Puppet 2.6.13Puppet Puppet 2.6.9Puppet Puppet 2.6.7Puppet Puppet 2.6.6Puppet Puppet Enterprise 1.2.0
4
CVSSv2
CVE-2013-2275
The default configuration for puppet masters 0.25.0 and later in Puppet prior to 2.6.18, 2.7.x prior to 2.7.21, and 3.1.x prior to 3.1.1, and Puppet Enterprise prior to 1.2.7 and 2.7.x prior to 2.7.2, allows remote authenticated nodes to submit reports for other nodes via unspeci...
Puppet Puppet 2.6.0Puppet Puppet 2.6.15Puppet Puppet 2.6.16Puppet Puppet 2.6.14Puppet Puppet 2.6.4Puppet Puppet 2.6.3Puppet Puppet 2.6.2Puppet Puppet 2.6.1Puppetlabs PuppetPuppet Puppet 2.6.12Puppet Puppet 2.6.9Puppet Puppet 2.6.10Puppet Puppet 2.6.8Puppet Puppet 2.6.6Puppet Puppet 2.6.13Puppet Puppet 2.6.11Puppet Puppet 2.6.7Puppet Puppet 2.6.5Puppetlabs Puppet 2.7.19Puppetlabs Puppet 2.7.20Puppet Puppet 2.7.9Puppet Puppet 2.7.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook