Mc

#11038de 53,633
25CVSS total
Vulnerabilidades · 3
Média
1
Alta
2
PT-2011-1692
10
2011-02-18
Moxa · Moxa Activex Sdk · CVE-2010-4742
**Name of the Vulnerable Software and Affected Versions** Moxa ActiveX SDK version 2.2.0.5 **Description** The issue is related to a stack-based buffer overflow in a certain ActiveX control in MediaDBPlayback.DLL. This allows remote attackers to execute arbitrary code via a long `PlayFileName` property value. **Recommendations** For version 2.2.0.5, consider disabling the vulnerable ActiveX control until a patch is available. Restrict access to the `PlayFileName` property to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.
PT-2010-2627
5.0
2010-07-13
Oracle · Oracle Secure Backup · CVE-2010-0904
**Name of the Vulnerable Software and Affected Versions** Oracle Secure Backup version 10.3.0.1 **Description** The issue allows remote attackers to affect integrity, potentially via an authentication bypass vulnerability in the administration interface, specifically related to `uname` authentication. **Recommendations** For Oracle Secure Backup version 10.3.0.1, consider restricting access to the administration interface as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2010-3226
10
2010-05-11
Hewlett Packard · Hp Openview Network Node Manager · CVE-2010-1553
**Name of the Vulnerable Software and Affected Versions** HP OpenView Network Node Manager versions 7.01, 7.51, and 7.53 **Description** The issue is related to a stack-based buffer overflow in the getnnmdata.exe component. This occurs when an invalid `MaxAge` parameter is provided, allowing remote attackers to execute arbitrary code. **Recommendations** For HP OpenView Network Node Manager version 7.01, update to a version that fixes the issue. For HP OpenView Network Node Manager version 7.51, update to a version that fixes the issue. For HP OpenView Network Node Manager version 7.53, update to a version that fixes the issue. As a temporary workaround, consider restricting access to the getnnmdata.exe component to minimize the risk of exploitation. Avoid using an invalid `MaxAge` parameter in the affected CGI endpoint until the issue is resolved.