93 matches found
CVE-2005-0877
Dnsmasq before 2.21 allows remote attackers to poison the DNS cache via answers to queries that were not made by Dnsmasq...
CVE-2005-0877
Dnsmasq before 2.21 is vulnerable to DNS cache poisoning: remote attackers can inject answers to queries not issued by dnsmasq, potentially compromising DNS integrity. Affected component is the dnsmasq binary; root cause is handling of unsolicited responses that enables cache poisoning. Impact is...
CVE-2003-0877
Mac OS X prior to 10.3 with core files enabled is vulnerable to a local symlink attack in /cores that can cause arbitrary file overwrite and core file disclosure. The core files are created with predictable names (core.PID), owned by root and 0400 by default, and the /cores directory is world-wri...
CVE-2003-0877
Mac OS X before 10.3 with core files enabled allows local users to overwrite arbitrary files and read core files via a symlink attack on core files that are created with predictable names in the /cores directory...
CVE-2002-0877
Directory traversal vulnerability in the FTP server for Shambala 4.5 allows remote attackers to read arbitrary files via a .. dot dot in the 1 LIST ls or 2 GET commands...
CVE-2002-0877
CVE-2002-0877 describes a directory traversal vulnerability in the FTP server for Shambala 4.5. The flaw allows remote attackers to read arbitrary files by injecting .. (dot dot) into the LIST (ls) or GET commands. Public details in the provided sources confirm the vulnerability class (directory ...
CVE-2002-0877
Directory traversal vulnerability in the FTP server for Shambala 4.5 allows remote attackers to read arbitrary files via a .. dot dot in the 1 LIST ls or 2 GET commands...
CVE-2000-0877
mailform.pl CGI script in MailForm 2.0 allows remote attackers to read arbitrary files by specifying the file name in the XX-attachfile parameter, which MailForm then sends to the attacker...
CVE-2000-0877
CVE-2000-0877 concerns the MailForm 2.0 product, specifically the mailform.pl CGI script. The vulnerability allows remote attackers to read arbitrary files by supplying a filename in the XX-attach_file parameter, which MailForm then sends to the attacker. The issue directly concerns the confident...
CVE-2000-0877
mailform.pl CGI script in MailForm 2.0 allows remote attackers to read arbitrary files by specifying the file name in the XX-attachfile parameter, which MailForm then sends to the attacker...
CVE-1999-0877
Internet Explorer 5 allows remote attackers to read files via an ExecCommand method called on an IFRAME...
CVE-1999-0877
Affected product : Internet Explorer 5. The vulnerability allows a remote attacker to read files by invoking an ExecCommand on an IFRAME. The description provides the root cause as an insecure use of ExecCommand within an IFRAME context, enabling unauthorized file access. The connected documents ...
CVE-1999-0877
Internet Explorer 5 allows remote attackers to read files via an ExecCommand method called on an IFRAME...