6 matches found
CVE-2010-3351
startBristol in Bristol 0.60.5 places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...
Directory traversal
startBristol in Bristol 0.60.5 places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...
CVE-2010-3351
startBristol in Bristol 0.60.5 places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...
CVE-2010-3351
The CVE-2010-3351 flaw affects Bristol (BrIoStOl) 0.60.5 and related Fedora updates: a zero-length directory name placed in LD_LIBRARY_PATH allows a local user to gain privileges via a Trojan horse shared library loaded from the current working directory. This is caused by Bristol’s handling of L...
CVE-2010-3351
startBristol in Bristol 0.60.5 places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...
Courier-Authlib非拉丁字符处理SQL注入漏洞
BUGTRAQ ID: 29605 CNCAN ID:CNCAN-2008061001 Courier-Authlib是一款Courier验证库。 Courier-Authlib处理用户提交的数据时缺少过滤,远程攻击者可以利用漏洞进行SQL注入攻击,可导致访问或修改数据。 由于处理非拉丁字符设置时存在SQL注入攻击。目前没有详细漏洞细节提供。 Courier Mail Server Courier-Authlib 0.60.5 厂商解决方案 升级程序: Courier Mail Server Courier-Authlib 0.60.5 Courier Mail Server...