MonAlbum 0.87 - Arbitrary File Upload / Password Grabber

!/usr/bin/env perl use strict; use warnings; use LWP::UserAgent; use HTTP::Request::Common; use Getopt::Std; my %args, $user, $password, $sqlhost, $sqluser, $sqlpassword, $cookie, $path, $file, $upload = ; my $tmp = 'cmd1.jpg'; getopts"u:a:f:p:", %args; -a don't retrieve login and passwords, use...

MonAlbum 0.87 Upload Shell / Password Grabber Exploit

Exploit for unknown platform in category web applications ===================================================== MonAlbum 0.87 Upload Shell / Password Grabber Exploit ===================================================== !/usr/bin/env perl use strict; use warnings; use LWP::UserAgent; use...

CVE-2007-6109

Stack-based buffer overflow in emacs allows user-assisted attackers to cause a denial of service application crash and possibly have unspecified other impact via a large precision value in an integer format string specifier to the format function, as demonstrated via a certain "emacs -batch -eval...

openSUSE 10 Security Update : emacs (emacs-4732)

This update fixes a buffer overflow in emacs that can be triggered over the command-line. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update emacs-4732. The text description of this plugin is C...

Three minutes to get to the hidden administrator account-vulnerability warning-the black bar safety net

On the regedit. exe everyone is familiar with, but not to the registry key set permissions, regedt32. exe the biggest advantages is the ability to the registry key set permissions. nt/2 0 0 0/xp account information in the registry of HKEYLOCALMACHINE＼SAM＼SAM key, but in addition to the system use...

Integer overflow

Integer underflow in the dnsnamefromtext function in 1 libdnsnonsecure.a and 2 libdnssecure.a in IBM AIX 5.2 allows local users to gain privileges via a crafted "-y" TSIG key command line argument to dig...

CVE-2007-4622

Integer underflow in the dnsnamefromtext function in 1 libdnsnonsecure.a and 2 libdnssecure.a in IBM AIX 5.2 allows local users to gain privileges via a crafted "-y" TSIG key command line argument to dig...

CVE-2007-4621

Buffer overflow in crontab in IBM AIX 5.2 allows local users to gain privileges via long command line arguments...

CVE-2007-4621

Buffer overflow in crontab in IBM AIX 5.2 allows local users to gain privileges via long command line arguments...

[SECURITY] Fedora 7 Update: cups-1.2.12-6.fc7

The Common UNIX Printing System provides a portable printing layer for UNIX=C2=AE operating systems. It has been developed by Easy Software Produc ts to promote a standard printing solution for all UNIX vendors and users. CUPS provides the System V and Berkeley command-line interfaces...

FreeBSD : ldapscripts -- Command Line User Credentials Disclosure (3a81017a-8154-11dc-9283-0016179b2dd5)

Ganael Laplanche reports : Up to now, each ldap command was called with the -w parameter, which allows to specify the bind password on the command line. Unfortunately, this could make the password appear to anybody performing a ps during the call. This is now avoided by using the -y parameter and...

Default credentials

makecatalogbackup in Bacula 2.2.5, and probably earlier, sends a MySQL password as a command line argument, and sometimes transmits cleartext e-mail containing this command line, which allows context-dependent attackers to obtain the password by listing the process and its arguments, or by sniffi...

CVE-2007-5626

makecatalogbackup in Bacula 2.2.5, and probably earlier, sends a MySQL password as a command line argument, and sometimes transmits cleartext e-mail containing this command line, which allows context-dependent attackers to obtain the password by listing the process and its arguments, or by sniffi...

DEBIAN-CVE-2007-5626

makecatalogbackup in Bacula 2.2.5, and probably earlier, sends a MySQL password as a command line argument, and sometimes transmits cleartext e-mail containing this command line, which allows context-dependent attackers to obtain the password by listing the process and its arguments, or by sniffi...

CVE-2007-5626

makecatalogbackup in Bacula 2.2.5, and probably earlier, sends a MySQL password as a command line argument, and sometimes transmits cleartext e-mail containing this command line, which allows context-dependent attackers to obtain the password by listing the process and its arguments, or by sniffi...

PT-2007-6636 · Bacula · Bacula

Name of the Vulnerable Software and Affected Versions: Bacula version 2.2.5 Description: The issue allows context-dependent attackers to obtain a MySQL password. This is possible because the make catalog backup function in Bacula sends the MySQL password as a command line argument. In some cases,...

DEBIAN-CVE-2007-5373

ldapscripts 1.4 and 1.7 sends a password as a command line argument when calling some LDAP programs, which might allow local users to read the password by listing the process and its arguments, as demonstrated by a call to ldappasswd in the changepassword function...

CVE-2007-5373

ldapscripts 1.4 and 1.7 sends a password as a command line argument when calling some LDAP programs, which might allow local users to read the password by listing the process and its arguments, as demonstrated by a call to ldappasswd in the changepassword function...

CVE-2007-5373

ldapscripts 1.4 and 1.7 sends a password as a command line argument when calling some LDAP programs, which might allow local users to read the password by listing the process and its arguments, as demonstrated by a call to ldappasswd in the changepassword function...

CVE-2007-5201

The FTP backend for Duplicity before 0.4.9 sends the password as a command line argument when calling ncftp, which might allow local users to read the password by listing the process and its arguments...