2367 matches found
WebCom datakommunikation Guestbook 0.1 - 'wguest.exe' Arbitrary File Access
source: https://www.securityfocus.com/bid/2024/info The freeware guestbook package from freeware.webcom.se provides a web-based guestbook feature, using CGI. Some versions of this guestbook undetermined at the time of writing are vulnerable to an attack allowing an intruder to retrieve the conten...
WebCom datakommunikation Guestbook 0.1 - 'rguest.exe' Arbitrary File Access
source: https://www.securityfocus.com/bid/2024/info The freeware guestbook package from freeware.webcom.se provides a web-based guestbook feature, using CGI. Some versions of this guestbook undetermined at the time of writing are vulnerable to an attack allowing an intruder to retrieve the conten...
PT-1999-1148 · Webcom · Webcom Cgi Guestbook
Name of the Vulnerable Software and Affected Versions: Webcom CGI Guestbook versions affected versions not specified Description: The issue allows a remote attacker to read arbitrary files using the template parameter. Recommendations: At the moment, there is no information about a newer version...
[SECURITY] New versions of ncurses fixes security problem
We have received a report that using ncurses in setuid programs will give the user a way to open arbitrary files. We recommend you upgrade your ncurses3.4-dev package immediately. dpkg -i file.deb will install the referenced file. Debian GNU/Linux 2.0 alias hamm This version of Debian were releas...
CVE-1999-1498
Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file...
CVE-1999-0270
Directory traversal vulnerability in pfdispaly.cgi program sometimes referred to as "pfdisplay" for SGI's Performer API Search Tool performertools allows remote attackers to read arbitrary files...
CVE-1999-0035
Race condition in signal handling routine in ftpd, allowing read/write arbitrary files...