metasploit metasploit framework 2.0 vulnerabilities and exploits

(subscribe to this query)

The StateToOptions function in msfweb in Metasploit Framework 2.4 and previous versions, when running with the -D option (defanged mode), allows malicious users to modify temporary environment variables before the "_Defanged" environment option is checked when processin...

Metasploit Metasploit Framework 2.0 Metasploit Metasploit Framework 2.1 Metasploit Metasploit Framework 2.2 Metasploit Metasploit Framework 2.3 Metasploit Metasploit Framework 2.4

Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, 4.5, and 4.5.1 does not properly determine whether it is safe to execute a method, which allows remote malicious users to execute arbitrary code via (1) a crafted web site or (2) a crafted .NET Framework applicati...

Microsoft .net Framework 1.0 Microsoft .net Framework 1.1 Microsoft .net Framework 2.0 Microsoft .net Framework 3.5 Microsoft .net Framework 3.5.1 Microsoft .net Framework 4.0 Microsoft .net Framework 4.5 Microsoft .net Framework 4.5.1

1 EDB exploit

Multiple buffer overflows in Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allow remote malicious users to execute arbitrary code via unknown vectors.

Broadcom Advantage Data Transport 3.0 Broadcom Adviseit 2.4 Broadcom Brightstor Portal 11.1 Broadcom Brightstor San Manager 1.1 Broadcom Brightstor San Manager 11.1 Broadcom Cleverpath Aion 10.0 Broadcom Cleverpath Ecm 3.5 Broadcom Cleverpath Olap 5.1 Broadcom Cleverpath Predictive Analysis Server 2.0 Broadcom Cleverpath Predictive Analysis Server 3.0 Broadcom Etrust Admin 8.0 Broadcom Etrust Admin 8.1

1 EDB exploit

Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...

Apache Log4j Apache Log4j 2.0 Siemens Sppa-t3000 Ses3000 Firmware Siemens Captial Siemens Captial 2019.1 Siemens Comos Siemens Desigo Cc Advanced Reports 4.0 Siemens Desigo Cc Advanced Reports 4.1 Siemens Desigo Cc Advanced Reports 4.2 Siemens Desigo Cc Advanced Reports 5.0 Siemens Desigo Cc Advanced Reports 5.1 Siemens Desigo Cc Info Center 5.0

2 Metasploit modules821 Github repositories29 Articles

The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 prior to 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote malicious users to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrat...

Openssl Openssl Filezilla-project Filezilla Server Siemens Application Processing Engine Firmware 2.0 Siemens Cp 1543-1 Firmware 1.1 Siemens Simatic S7-1500 Firmware 1.5 Siemens Simatic S7-1500t Firmware 1.5 Siemens Elan-8.2 Siemens Wincc Open Architecture 3.12 Intellian V100 Firmware 1.20 Intellian V100 Firmware 1.21 Intellian V100 Firmware 1.24 Intellian V60 Firmware 1.15

4 EDB exploits2 Nmap scripts180 Github repositories4 Articles

Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...

1 Github repository

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook