HNAP Remote Command Elevation of Privilege Vulnerability in Multiple D-Link Products

D-link specializes in the design and development of hardware products for wireless networks and Ethernet circuits. A remote command elevation of privilege vulnerability exists in several D-Link products HNAP. This vulnerability can be exploited by attackers to elevate privileges and execute...

HP Operations Manager i Management Pack for SAP Elevation of Privilege Vulnerability

HP Operations is a decentralized client/service software product for managing decentralized environments. A security vulnerability exists in HP Operations Manager i Management Pack for SAP that allows a local SAP administrative user to execute system commands on the system with elevated privilege...

Multiple vulnerabilities in 'ncc/ncc2' Service in multiple D-Link and TRENDnet routers

The D-Link DIR-820L is an enterprise-class wireless router.TRENDnet TEW-731BR is a wireless router. Multiple vulnerabilities in the 'ncc/ncc2' Service in multiple D-Link and TRENDnet routers allow attackers to exploit this vulnerability to gain root access to the device, hijack DNS settings or...

DEBIAN-CVE-2013-4478

Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an email attachment...

Perl Digest improper control of generation of code

Eval injection vulnerability in the Digest module before 1.17 for Perl allows context-dependent attackers to execute arbitrary commands via the new constructor...

DEBIAN-CVE-2008-4247

ftpd in OpenBSD 4.3, FreeBSD 7.0, NetBSD 4.0, Solaris, and possibly other operating systems interprets long commands from an FTP client as multiple commands, which allows remote attackers to conduct cross-site request forgery CSRF attacks and execute arbitrary FTP commands via a long ftp:// URI...

security flaw

Firefox 1.0.6 and Mozilla 1.7.10 allows attackers to execute arbitrary commands via shell metacharacters in a URL that is provided to the browser on the command line, which is sent unfiltered to bash...

DEBIAN-CVE-2003-0069

The PuTTY terminal emulator 0.53 allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute...

PT-1999-1192 · Microsoft · Iis

Name of the Vulnerable Software and Affected Versions: IIS affected versions not specified Description: The issue is related to the exec function being enabled for Server Side Include SSI files in IIS. This could potentially allow for execution of commands. Recommendations: At the moment, there i...