http://dsecrg.com/pages/vul/ Digital Security Research Group: Vulnerabilities http://dsecrg.com/pages/vul/show.php?id=419 http://dsecrg.com/pages/vul/show.php?id=419 vCenter Orchestrator - password disclosure The vCenter Orchestrator (vCO) Web Configuration tool reflects back saved passwords as part of web page.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=418 http://dsecrg.com/pages/vul/show.php?id=418 Oracle Application Server - multiple security vulnerabilities Oracle Application Server Containers has multiple HTTP Response Splitting vulnerabilities.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=417 http://dsecrg.com/pages/vul/show.php?id=417 ASUS Net4Switch ipswcom.dll ActiveX - buffer overflow vulnerability ASUS Net4Switch contains ActiveX component ipswcom.dll which is vulnerable to buffer overflow attack.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=416 http://dsecrg.com/pages/vul/show.php?id=416 SAP MessagingSystem - information disclosure Information disclosure in MessagingSystem servlet.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=414 http://dsecrg.com/pages/vul/show.php?id=414 SAP Internet Sales - XSS SAP NetWeaver 7.0 Internet Sales (crm.b2b) has XSS vulnerability. <hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=415 http://dsecrg.com/pages/vul/show.php?id=415 SAP Adapter Monitor - information disclosure Information disclosure in com.sap.aii.mdt.amt.web.AMTPageProcessor servlet.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=413 http://dsecrg.com/pages/vul/show.php?id=413 SAP Application Administration - local file read SAP NetWeaver 7.0 Application Administration (com.sap.ipc.webapp.ipc) has local file read vulnerability.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=412 http://dsecrg.com/pages/vul/show.php?id=412 SAP NetWeaver Internet Sales - local file read SAP NetWeaver 7.0 Internet Sales (crm.b2b) has local file read vulnerability. <hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=411 http://dsecrg.com/pages/vul/show.php?id=411 SAP NetWeaver Business Communication Broker - multiple XSS SAP NetWeaver Business Communication Broker has multiple linked XSS vulnerabilies.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=410 http://dsecrg.com/pages/vul/show.php?id=410 SAP TesContainerAdmin service - stored XSS SAP NetWeaver contains a flaw in its Text Container Administration Application - stored XSS vulnerability. <hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=409 http://dsecrg.com/pages/vul/show.php?id=409 SAP NetWeaver PFL_CHECK_OS_FILE_EXISTENCE - missing authorization check and SMB Relay vulnerability Missing authorization check in FRC function PFL_CHECK_OS_FILE_EXISTENCE.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=408 http://dsecrg.com/pages/vul/show.php?id=408 SAP NetWeaver RWB - unauthorized acсess Unauthorized access is possible to some Runtime Workbench resources.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=407 http://dsecrg.com/pages/vul/show.php?id=407 Tecomat PLC - Default passwords Default passwords enabled for Tecomat PLC devices.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=406 http://dsecrg.com/pages/vul/show.php?id=406 OPC Systems.NET FlexGrid 7.1 ActiveX - Buffer Overflow Buffer overflow found in 3rd party ActiveX control. <hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=405 http://dsecrg.com/pages/vul/show.php?id=405 wellintech KingSCADA 3.0 - Insecure password encryption It is possible to obtain cleartext password to access KingSCADA because it is stored insecurely.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=404 http://dsecrg.com/pages/vul/show.php?id=404 WAGO PLC 750 - CSRF password change [0-day] It is possible to change password by forcing administrator to open malicious link.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=403 http://dsecrg.com/pages/vul/show.php?id=403 WAGO PLC 750 - information disclosure [0-day] It is possible to get some information from the PLC web interface without authentication.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=402 http://dsecrg.com/pages/vul/show.php?id=402 WAGO PLC 750 - unauthorized firmware download [0-day] It is possible to download firmware from web interface of the PLC without authentication.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=401 http://dsecrg.com/pages/vul/show.php?id=401 WAGO PLC - default passwords [0-day] Default passwords enabled for WAGO PLC devices.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=342 http://dsecrg.com/pages/vul/show.php?id=342 VMware Update Manager - Directory Traversal Directory traversal vulnerability discovered in the VMware Update Manager, which allows you to read any file on the OS without authentification. <hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=341 http://dsecrg.com/pages/vul/show.php?id=341 SAP NetWeaver - Authentication bypass (Verb Tampering) Authentication bypass vulnerability in SAP NetWeaver CTC service can be exploited for unauthorized user management and OS command execution.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=340 http://dsecrg.com/pages/vul/show.php?id=340 SAP NetWeaver SPML - XML CSRF user creation Attacker can create a new user in J2EE Engine using CSRF attack on SPML service.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=339 http://dsecrg.com/pages/vul/show.php?id=339 SAP NetWeaver TH_GREP module - Code injection vulnerability (NEW) TH_GREP report is vulnerable for command execution vulnerability which is working with previous patch (note 1433101). Remote OS command execution is possible<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=337 http://dsecrg.com/pages/vul/show.php?id=337 SAP BW Doc - Multiple XSS BW DOC metadata application in SAP NetWeaver is vulnerable to XSS attack.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=338 http://dsecrg.com/pages/vul/show.php?id=338 SAP RSTXSCRP report - smb relay vulnerability SAP RSTXSCRP Report has path traversal vulnerability which can lead to SMB relay attack and full control on system.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=336 http://dsecrg.com/pages/vul/show.php?id=336 SAP NetWaver Virus Scan Interface - multiple XSS SAP Netweaver Virus Scan Interface has linked XSS vulnerabilities.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=335 http://dsecrg.com/pages/vul/show.php?id=335 SAP GUI BAPI Explorer- Unauthorized execution of function SAP GUI BAPI Explorer has stored XSS which can be used to unauthorized code execution on server side<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=334 http://dsecrg.com/pages/vul/show.php?id=334 SAP NetWeaver J2EE MeSync – information disclose Attacker can get information about mobile engine version and sometimes the name of the technical user. <hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=333 http://dsecrg.com/pages/vul/show.php?id=333 SAP Crystal Report Server pubDBLogon - Linked ХSS vulnerability XSS vulnerability found in pubDBLogon.jsp page of SAP Crystal Report Server 2008.<hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a> http://dsecrg.com/pages/vul/show.php?id=332 http://dsecrg.com/pages/vul/show.php?id=332 SAP NetWeaver ipcpricing - information disclose com.sap.ipc.webapp.ipcpricing application has information disclose vulnerability <hr>Digital Secruity Research Group &mdash; <a href="http://dsecrg.com">www.dsecrg.com</a><br>Rss: <a href="http://feeds2.feedburner.com/dsecrg_vuln">Vulnerabilities</a>, <a href="http://feeds2.feedburner.com/dsecrg_expl">Exploits</a>, <a href="http://feeds2.feedburner.com/dsecrg_news">News</a>, <a href="http://feeds2.feedburner.com/dsecrg_pub">Publications</a>, <a href="http://feeds2.feedburner.com/dsecrg_sum">Summary</a>