CVE-2006-1079

htpasswd, as used in Acme thttpd 2.25b and possibly other products such as Apache, might allow local users to gain privileges via shell metacharacters in a command line argument, which is used in a call to the system function. NOTE: since htpasswd is normally installed as a non-setuid program, an...

CVE-2006-1078

Multiple buffer overflows in htpasswd, as used in Acme thttpd 2.25b, and possibly other products such as Apache, might allow local users to gain privileges via 1 a long command line argument and 2 a long line in a file. NOTE: since htpasswd is normally installed as a non-setuid program, and the...

PT-2006-2107 · Apache · Htpasswd

Name of the Vulnerable Software and Affected Versions: htpasswd versions 2.25b and earlier Description: The issue allows local users to gain privileges via shell metacharacters in a command line argument, which is used in a call to the system function. This could potentially be exploited in...

Apple Mac OSX Safari Browser - 'Safe File' Remote Code Execution (Metasploit)

This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...

Two hidden Trojans new method-vulnerability warning-the black bar safety net

Two hiddenTrojan the new method win9x under the device name DOS vulnerability is all week, in fact win2000 also has a similar vulnerability. We tentatively called the a vulnerability to“to the device name for the folder denial of service vulnerability”, although long ago There's this vulnerabilit...

YapBB <= 1.2 (cfgIncludeDirectory) Remote Command Execution Exploit

Exploit for unknown platform in category web applications =================================================================== YapBB All rights reserved. never ctrl+c again. cijfer$ http://target.com/dir host changed to 'http://target.com/dir' cijfer$ to set your PHP shell location: cijfer$...

CVE-2006-0539

CVE-2006-0539 affects the convert-fcrontab component of the fcron 3.0.0 package. The vulnerability arises when a long command-line argument allows a local user to gain privileges, potentially because Linux glibc heap memory corruption can occur due to a strcpy in the strdup2 function overwriting ...

CVE-2005-4699

Argument injection vulnerability in TellMe 1.2 and earlier allows remote attackers to modify command line arguments for the Whois program and obtain sensitive information via "--" style options in the qHost parameter...

CVE-2006-0224

Buffer overflow in Library of Assorted Spiffy Things LibAST 0.6.1 and earlier, as used in Eterm and possibly other software, allows local users to execute arbitrary code as the utmp user via a long -X command line argument alternative configuration file name...

Buffer overflow

Buffer overflow in Library of Assorted Spiffy Things LibAST 0.6.1 and earlier, as used in Eterm and possibly other software, allows local users to execute arbitrary code as the utmp user via a long -X command line argument alternative configuration file name...

CVE-2006-0224

Buffer overflow in Library of Assorted Spiffy Things LibAST 0.6.1 and earlier, as used in Eterm and possibly other software, allows local users to execute arbitrary code as the utmp user via a long -X command line argument alternative configuration file name...

SquirrelMail Web mail Change Passwd plugin buffer overflow

Buffer overflow on parsing command line arguments...

CVE-2006-0331

Buffer overflow in Change passwd 3.1 chpasswd SquirrelMail plugin allows local users to execute arbitrary code via long command line arguments...

Mandrake Linux Security Advisory : mozilla-thunderbird (MDKSA-2005:174)

Updated Mozilla Thunderbird packages fix various vulnerabilities : The run-mozilla.sh script, with debugging enabled, would allow local users to create or overwrite arbitrary files via a symlink attack on temporary files CVE-2005-2353. A bug in the way Thunderbird processes XBM images could be us...

MDKSA-2005:169 : mozilla-firefox

A number of vulnerabilities have been discovered in Mozilla Firefox that have been corrected in version 1.0.7: A bug in the way Firefox processes XBM images could be used to execute arbitrary code via a specially crafted XBM image file CVE-2005-2701. A bug in the way Firefox handles certain Unico...

CVE-2006-0177

Multiple buffer overflows in Cray UNICOS 9.0.2.2 might allow local users to gain privileges by 1 invoking /usr/bin/script with a long command line argument or 2 setting the -c option of /etc/nu to the name of a file containing a long line...

Xmame Multiple Arcade Machine Emulator buffer overflow

Buffer overflow on different command line options parsing...

Cray UNICOS etcnu - -c Option Filename Processing Local Overflow

Cray UNICOS etcnu - -c Option Filename Processing Local Overflow source: https://www.securityfocus.com/bid/16205/info Cray UNICOS is prone to locally exploitable buffer overflow vulnerabilities. These issues are due to insufficient bounds checking of command line parameters in various utilities...

Cray UNICOS /usr/bin/script - Command Line Argument Local Overflow

source: https://www.securityfocus.com/bid/16205/info Cray UNICOS is prone to locally exploitable buffer overflow vulnerabilities. These issues are due to insufficient bounds checking of command line parameters in various utilities with setuid-superuser privileges. Successful exploitation could...

CVE-2005-4620

Technical details about CVE-2005-4620 are not publicly available in the provided documents. Monitor for updates.