2659 matches found
TinyPHPForum 3.6 - UpdatePF.php Authentication Bypass
TinyPHPForum 3.6 - UpdatePF.php Authentication Bypass source: https://www.securityfocus.com/bid/19281/info TinyPHPForum is prone to an authentication-bypass vulnerability because it fails to prevent an attacker from accessing admin scripts directly without requiring authentication. A remote...
security flaw
fs/exec.c in Linux 2.6, when one thread is tracing another thread that shares the same memory map, might allow local users to cause a denial of service deadlock by forcing a core dump when the traced thread is in the TASKTRACED state...
linux/x86 stdin re-open and /bin/sh exec shellcode
linux/x86 stdin re-open and /bin/sh exec shellcode. Shellcode exploit for linx86 platform / $Id: gets-linux.c,v 1.3 2004/06/02 12:22:30 raptor Exp $ gets-linux.c - stdin re-open shellcode for Linux/x86 Copyright c 2003 Marco Ivaldi Local shellcode for stdin re-open and /bin/sh exec. It closes std...
CentOS 4 : kdenetwork (CESA-2005:639)
Updated kdenetwork packages to correct a security flaw in Kopete are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. The kdenetwork package contains networking applications for the K Desktop...
In the PHP implementation of the system to external command-and-vulnerability warning-the black bar safety net
PHP as a server side scripting language, like writing a simple, or a complex dynamic web page such a task, it is fully able to do the job. But the thing is not always the case, sometimes in order to achieve a certain function, it must be by means of theoperating systemof the external program, or...
[Full-disclosure] [SECURITY] [DSA 1090-1] New spamassassin packages fix remote command execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1090-1 [email protected] http://www.debian.org/security/ Martin Schulze June 6th, 2006 http://www.debian.org/security/faq -...
Remote file inclusion
PHP remote file inclusion vulnerability in includes/config.php in Jetbox CMS 2.1 allows remote attackers to execute arbitrary code via a URL in the relativescriptpath parameter...
linux/amd64 - connect-back semi-stealth shellcode 88+ bytes
linux/amd64 connect-back semi-stealth shellcode 88+ bytes. Shellcode exploit for linamd64 platform include include include include include include include / usual rant here.. this is just a doodle.. i was curious about the amd64 and since i dont think a simple exec /bin/sh is worth releasing i gi...
VERITAS Backup Exec Agent Browser hostname buffer overflow
Added: 04/07/2006 CVE: CVE-2004-1172 BID: 11974 OSVDB: 12418 Background VERITAS Backup Exec for Windows is a data backup and recovery solution. Problem A buffer overflow in the VERITAS Backup Exec Agent Browser allows a remote attacker to execute commands by sending a long, specially crafted...
VERITAS Backup Exec Agent Browser hostname buffer overflow
Added: 04/07/2006 CVE: CVE-2004-1172 BID: 11974 OSVDB: 12418 Background VERITAS Backup Exec for Windows is a data backup and recovery solution. Problem A buffer overflow in the VERITAS Backup Exec Agent Browser allows a remote attacker to execute commands by sending a long, specially crafted...
VERITAS Backup Exec Agent Browser hostname buffer overflow
Added: 04/07/2006 CVE: CVE-2004-1172 BID: 11974 OSVDB: 12418 Background VERITAS Backup Exec for Windows is a data backup and recovery solution. Problem A buffer overflow in the VERITAS Backup Exec Agent Browser allows a remote attacker to execute commands by sending a long, specially crafted...
VERITAS Backup Exec Agent Browser hostname buffer overflow
Added: 04/07/2006 CVE: CVE-2004-1172 BID: 11974 OSVDB: 12418 Background VERITAS Backup Exec for Windows is a data backup and recovery solution. Problem A buffer overflow in the VERITAS Backup Exec Agent Browser allows a remote attacker to execute commands by sending a long, specially crafted...
Symantec Security Advisory, SYM06-005
Symantec Security Advisory SYM06-005 17 March 2006 Veritas Backup Exec for Windows Servers: Media Server BENGINE Service Job log Format String Overflow Revision History None Severity Low network/system authorization and specific configuration required Remote Access Yes Local Access No...
Multiple Symantec Veritas Backup Exec backup agent vulnerabilities
DoS, format string vulnerabilities...
Format string
Format string vulnerability in the Job Engine service bengine.exe in the Media Server in Veritas Backup Exec 10d 10.1 for Windows Servers rev. 5629, Backup Exec 10.0 for Windows Servers rev. 5520, Backup Exec 10.0 for Windows Servers rev. 5484, and Backup Exec 9.1 for Windows Servers rev. 4691,...
CVE-2006-1297
Unspecified vulnerability in Veritas Backup Exec for Windows Server Remote Agent 9.1 through 10.1, for Netware Servers and Remote Agent 9.1 and 9.2, and Remote Agent for Linux Servers 10.0 and 10.1 allow attackers to cause a denial of service application crash or unavailability due to "memory...
Design/Logic Flaw
Unspecified vulnerability in Veritas Backup Exec for Windows Server Remote Agent 9.1 through 10.1, for Netware Servers and Remote Agent 9.1 and 9.2, and Remote Agent for Linux Servers 10.0 and 10.1 allow attackers to cause a denial of service application crash or unavailability due to "memory...
CVE-2006-1298
Format string vulnerability in the Job Engine service bengine.exe in the Media Server in Veritas Backup Exec 10d 10.1 for Windows Servers rev. 5629, Backup Exec 10.0 for Windows Servers rev. 5520, Backup Exec 10.0 for Windows Servers rev. 5484, and Backup Exec 9.1 for Windows Servers rev. 4691,...
CVE-2006-1297
Unspecified vulnerability in Veritas Backup Exec for Windows Server Remote Agent 9.1 through 10.1, for Netware Servers and Remote Agent 9.1 and 9.2, and Remote Agent for Linux Servers 10.0 and 10.1 allow attackers to cause a denial of service application crash or unavailability due to "memory...
CVE-2006-1298
CVE-2006-1298 is a format string vulnerability in the Job Engine service (bengine.exe) of Veritas Backup Exec Media Server. The flaw affects Backup Exec 10d (10.1) for Windows Servers rev. 5629, Backup Exec 10.0 revs. 5520 and 5484, and Backup Exec 9.1 rev 4691, and is triggered when the job log ...