CuteNews 0.88 - shownews.php Remote File Inclusion

CuteNews 0.88 - shownews.php Remote File Inclusion source: https://www.securityfocus.com/bid/6935/info CuteNews is prone to an issue that may allow remote attackers to include files located on remote servers. Under some circumstances, it is possible for remote attackers to influence the include...

CuteNews 0.88 - 'shownews.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/6935/info CuteNews is prone to an issue that may allow remote attackers to include files located on remote servers. Under some circumstances, it is possible for remote attackers to influence the include path for several include files to point to an extern...

Microsoft Internet Explorer 5 - ShowHelp Arbitrary Command Execution

Microsoft Internet Explorer 5 - ShowHelp Arbitrary Command Execution source: https://www.securityfocus.com/bid/6780/info Microsoft Internet Explorer implements the showHelp function as a means of displaying help content contained in HTML pages. However, this function is capable of performing too...

Microsoft Internet Explorer 5 - ShowHelp Arbitrary Command Execution

source: https://www.securityfocus.com/bid/6780/info Microsoft Internet Explorer implements the showHelp function as a means of displaying help content contained in HTML pages. However, this function is capable of performing too many other actions outside of its intended functionality through...

Important: Red Hat Security Advisory: vim security update

Updated VIM packages are available for Red Hat Linux Advanced Server. These updates resolve a security issue when opening a specially-crafted text file. Updated 06 Feb 2003 Added fixed packages for Advanced Workstation 2.1 VIM VIsual editor iMproved is a version of the vi editor. VIM allows a use...

[SECURITY] [DSA 241-1] New kdeutils packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 241-1 [email protected] http://www.debian.org/security/ Martin Schulze January 24th, 2003 http://www.debian.org/security/faq -...

DSA-241 kdeutils - several vulnerabilities

Bulletin has no description...

[SECURITY] [DSA 240-1] New kdegames packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 240-1 [email protected] http://www.debian.org/security/ Martin Schulze January 23rd, 2003 http://www.debian.org/security/faq -...

[SECURITY] [DSA 238-1] New kdepim packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 238-1 [email protected] http://www.debian.org/security/ Martin Schulze January 23rd, 2003 http://www.debian.org/security/faq -...

YABB SE 0.81.41.5 - Packages.php Remote File Inclusion

YABB SE 0.81.41.5 - Packages.php Remote File Inclusion source: https://www.securityfocus.com/bid/6663/info YaBB SE allows remote users to influence the location of included files. A remote attacker may exploit this condition to cause an external, attacker-supplied file to be included and executed...

YABB SE 0.8/1.4/1.5 - 'Packages.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/6663/info YaBB SE allows remote users to influence the location of included files. A remote attacker may exploit this condition to cause an external, attacker-supplied file to be included and executed by YABB SE. This may allow a remote attacker to execut...

Critical: Red Hat Security Advisory: : : : Updated CVS packages available

Updated cvs packages are now available for Red Hat Linux 6.2, 7, 7.1, 7.2, 7.3, and 8.0. These updates close a vulnerability which would permit arbitrary command execution on servers configured to allow anonymous read-only access. Updated 16 April 2003 Added packages for Red Hat Linux on IBM...

Half-Life AdminMod 2.50 Plugin - Remote Format String

Half-Life AdminMod 2.50 Plugin - Remote Format String // source: https://www.securityfocus.com/bid/6580/info // A format string vulnerability has been discovered in the Half-Life AdminMod plugin. The problem occurs in commands which call the selfmessage function, which is used by other functions ...

Half-Life AdminMod 2.50 Plugin - Remote Format String

// source: https://www.securityfocus.com/bid/6580/info // A format string vulnerability has been discovered in the Half-Life AdminMod plugin. The problem occurs in commands which call the selfmessage function, which is used by other functions to write a message to the users console. The format...

[SECURITY] [DSA 222-1] New xpdf packages fix arbitrary command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 222-1 [email protected] http://www.debian.org/security/ Martin Schulze January 6th, 2003 http://www.debian.org/security/faq -...

CVE-2002-1991

PHP file inclusion vulnerability in osCommerce 2.1 execute arbitrary commands via the includefile parameter to includeonce.php...

CVE-2002-2040

The 1 phrafx and 2 phgrafx-startup programs in QNX realtime operating system RTOS 4.25 and 6.1.0 do not properly drop privileges before executing the system command, which allows local users to execute arbitrary commands by modifying the PATH environment variable to reference a malicious crttrap...

CVE-2002-2383

SQL injection vulnerability in f2html.pl 0.1 through 0.4 allows remote attackers to execute arbitrary SQL commands via file names...

Emacs 2.1 - Local Variable Arbitrary Command Execution

Emacs 2.1 - Local Variable Arbitrary Command Execution source: https://www.securityfocus.com/bid/15375/info Emacs is susceptible to an arbitrary command execution vulnerability with local variables. This issue is due to insufficient sanitization of user-supplied input. By modifying a text file to...

Emacs 2.1 - Local Variable Arbitrary Command Execution

source: https://www.securityfocus.com/bid/15375/info Emacs is susceptible to an arbitrary command execution vulnerability with local variables. This issue is due to insufficient sanitization of user-supplied input. By modifying a text file to include local variables containing containing shell...