Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

T-015: InstallShield / Macrovision / Acresso FLEXnet Connect Vulnerabilities

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) T-015: InstallShield / Macrovision / Acresso FLEXnet Connect Vulnerabilities
# 1  
Old 11-13-2008
T-015: InstallShield / Macrovision / Acresso FLEXnet Connect Vulnerabilities
Acresso FLEXnet Connect executes scripts that are insecurely retrieved from a remote web server, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. The risk is MEDIUM. By modifying the rule script that is sent to a FLEXnet Connect client, a remote unauthenticated attacker may be able to execute arbitrary code on a vulnerable system.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

2 More Discussions You Might Find Interesting

1. HP-UX

installshield....

hi all is it possible to automate installaion process of any software on unix? for eg. we have our front end on windows and we have installshield package that installs everything creating folder structure to creating database. now we are planning to automate our backend installation like... (0 Replies)
Discussion started by: zedex
0 Replies

2. Solaris

some questions on 310-015

hi can any1 pls ans these questions 22. Which two statements about the functionality of the syslogd daemon are true? (Choose two) A. Error messages can only be logged locally in a system log. B. The kernel, daemons, and syslogd each write directly to a system log. C. Syslogd can write... (1 Reply)
Discussion started by: azeem_3001
1 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

net.connect

Net.connect(3kaya)					       Kaya module reference						Net.connect(3kaya)

NAME

       Net::connect - Connect to a server

SYNOPSIS

       NetHandle connect( Protocol proto, String server, Int port, Bool usetls=false, [String] certfiles=[] )

ARGUMENTS

       proto The network protocol to use

       server The hostname or IP address of the server to connect to (e.g.  service.example.com , localhost or 192.168.20.25 )

       port The network port to connect to

       usetls If this is true, and the TLS library is available, then the connection will be encrypted. This parameter may be omitted and defaults
       to false.

       certs An optional list of certificate files for TLS encrypted connections. Each file should contain one or  more  PEM-encoded  certificates
       for a trusted certification authority. If this list is empty (the default), no certificate verification will be performed on encrypted con-
       nections, which is insecure.

DESCRIPTION

       Connect to a server (optionally using TLS). Returns a connection handle.

AUTHORS

       Kaya standard library by Edwin Brady, Chris Morris and others (kaya@kayalang.org). For further information see http://kayalang.org/

LICENSE

       The Kaya standard library is free software; you can redistribute it and/or modify it under the terms  of  the  GNU  Lesser  General  Public
       License (version 2.1 or any later version) as published by the Free Software Foundation.

RELATED

       Net.NetHandle(3kaya)
       Net.Protocol(3kaya)
       Net.closeConnection(3kaya)
       Net.recv(3kaya)
       Net.shutdown(3kaya)
       Net.send(3kaya)

Kaya								   October 2012 						Net.connect(3kaya)