Lucene search
+L

121 matches found

OSV
OSV
added 2008/01/03 8:46 p.m.9 views

CVE-2007-6610

unp 1.0.12, and other versions before 1.0.14, does not properly escape file names, which might allow context-dependent attackers to execute arbitrary commands via shell metacharacters in a filename argument. NOTE: this might only be a vulnerability when unp is invoked by a third party product...

7.2AI score
Exploits0References7
OSV
OSV
added 2005/01/10 5:0 a.m.10 views

CVE-2004-1147

phpMyAdmin 2.6.0-pl2, and other versions before 2.6.1, with external transformations enabled, allows remote attackers to execute arbitrary commands via shell metacharacters...

7.8AI score
Exploits0References3
Gentoo Linux
Gentoo Linux
added 2005/01/10 12:0 a.m.23 views

TikiWiki: Arbitrary command execution

Background TikiWiki is a web-based groupware and content management system CMS, using PHP, ADOdb and Smarty. Description TikiWiki lacks a check on uploaded images in the Wiki edit page. Impact A malicious user could run arbitrary commands on the server by uploading and calling a PHP script...

7.5CVSS2.3AI score0.01807EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/12/20 12:0 a.m.33 views

Debian DSA-612-1 : a2ps - unsanitised input

Rudolf Polzer discovered a vulnerability in a2ps, a converter and pretty-printer for many formats to PostScript. The program did not escape shell meta characters properly which could lead to the execution of arbitrary commands as a privileged user if a2ps is installed as a printer filter...

10CVSS5.6AI score0.15981EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2004/09/09 12:0 a.m.26 views

Fedora Core 1 : lha-1.14i-12.2 (2004-294)

Lukasz Wojtow discovered a stack-based buffer overflow in all versions of lha up to and including version 1.14. A carefully created archive could allow an attacker to execute arbitrary code when a victim extracts or tests the archive. The Common Vulnerabilities and Exposures project cve.mitre.org...

10CVSS6.6AI score0.18827EPSS
Exploits1References2
0day.today
0day.today
added 2004/08/21 12:0 a.m.26 views

AWStats Input Validation Hole in 'logfile'

Exploit for cgi platform in category dos / poc ========================================== AWStats Input Validation Hole in 'logfile' ========================================== Example:...

7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2003/07/08 7:44 p.m.37 views

Moderate: Red Hat Security Advisory: hanterm-xf security update

Updated Hangul Terminal packages fix two security issues. Hangul Terminal is a terminal emulator for the X Window System, based on Xterm. Hangul Terminal provides an escape sequence for reporting the current window title, which essentially takes the current title and places it directly on the...

7.5CVSS5.9AI score0.01938EPSS
Exploits0References2
securityvulns
securityvulns
added 2003/03/07 12:0 a.m.33 views

Wordit Logbook Version 0.98b3

Wordit Limited 2000. http://scripts.wordit.com/ User can read any files and execute any commands. Example: www.idontknowperl.com/logbook.pl? file=../../../../../../../bin/cat20logbook.pl00| / Alexey Sintsov aka DonHuan irc.megik.net brrr / include best/regards.h...

1.6AI score
Exploits0
Packet Storm
Packet Storm
added 2003/01/05 12:0 a.m.22 views

s8forum.txt

--0-1583051551-1041748889=:62186 Content-Type: text/plain; charset=us-ascii INFORMATIONS : ============= - Product : S8Forum - Tested version : 3.0 maybe other versions. - Website : http://www.kellishaver.com/ Vendor Status: not informed yet !!! - Problem : A security vulnerability in S8Forum...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2002/11/06 12:0 a.m.41 views

Command execution in perl-MailTools

Usage of mailx as a mailer allows command insertion into mail body...

3.2AI score
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2002/08/13 12:0 a.m.44 views

PGPMail.pl detection

The 'PGPMail.pl' CGI is installed. Some versions up to v1.31 a least of this CGI do not properly filter user input before using it inside commands. This would allow an attacker to run any command on the server. Note: Nessus just checked the presence of this CGI but did not try to exploit the flaw...

7.5CVSS5.5AI score0.01875EPSS
Exploits0References3
NVD
NVD
added 2002/05/29 4:0 a.m.17 views

CVE-2002-0178

uudecode, as available in the sharutils package before 4.2.1, does not check whether the filename of the uudecoded file is a pipe or symbolic link, which could allow attackers to overwrite files or execute commands...

7.2CVSS6.6AI score0.00622EPSS
Exploits0References11
Cvelist
Cvelist
added 2001/09/12 4:0 a.m.17 views

CVE-1999-1064

Multiple buffer overflows in WindowMaker 0.52 through 0.60.0 allow attackers to cause a denial of service and possibly execute arbitrary commands by executing WindowMaker with a long program name argv0...

7.7AI score0.025EPSS
Exploits0References3
exploitpack
exploitpack
added 2001/04/03 12:0 a.m.29 views

Gene6 BPFTP Server 2.0 - File Existence Disclosure

Gene6 BPFTP Server 2.0 - File Existence Disclosure source: https://www.securityfocus.com/bid/2537/info A user can confirm the existence and location of files and directory structure information, by submitting a 'size' or 'mdtm' command of a file. If the command is carried out by the vulnerable...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2001/03/11 12:0 a.m.47 views

Cgisecurity.com advisory #4 The Free On-line Dictionary of Computing

The vendor has been contacted on this issue and it is being fixed. please visit his page for further updates. Just so all the script kids know it does allow partial command execution. The only limit to this is commands with arguements. EX: limited to single commands like ls,ps Debian also has thi...

7.4AI score
Exploits0
NVD
NVD
added 2000/11/14 5:0 a.m.22 views

CVE-2000-0824

The unsetenv function in glibc 2.1.1 does not properly unset an environmental variable if the variable is provided twice to a program, which could allow local users to execute arbitrary commands in setuid programs by specifying their own duplicate environmental variables such as LDPRELOAD or...

7.2CVSS7.1AI score0.01232EPSS
Exploits1References15
securityvulns
securityvulns
added 2000/10/27 12:0 a.m.23 views

Большая дырка в Web-интерфейсе Cisco Catalist (Web exec)

Анонимный пользователь может выполнить любые команды, например http://catalyst/exec/show/config/cr...

Exploits0References1
Packet Storm
Packet Storm
added 2000/04/07 12:0 a.m.32 views

fcheck.txt

The short explanation: fcheck is a file integrity checker written in perl. It can send warnings to syslog via an external program such as logger1. Because it calls system with a scalar argument, a malicious user can cause it to execute programs by creating files with shell metacharacters in their...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2000/03/05 12:0 a.m.20 views

SGI InfoSearch 1.0 SGI IRIX 6.5.x - fname

SGI InfoSearch 1.0 SGI IRIX 6.5.x - fname source: https://www.securityfocus.com/bid/1031/info The InfoSearch package converts man pages and other documentation into HTML web content. The search form uses infosrch.cgi which does not properly parse user input in the 'fname' variable, allowing...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 1999/09/28 12:0 a.m.33 views

lynx.2.8.2.extern.txt

-----BEGIN PGP SIGNED MESSAGE----- SuSE Security Announcement Package: lynx-2.8.2 and older Date: Thu Sep 16 21:29:15 CEST 1999 Affected: all Linux distributions using lynx-2.8.2 and older A security hole was discovered in the package mentioned above. Please update as soon as possible or disable...

Exploits0
Rows per page
Query Builder