850 matches found
CVE-2007-4464
CRLF injection vulnerability in the Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to spoof the information in the Image File Header tab via strings with CRLF sequences in the IMAGEEXPORTDIRECTORY array in a PE file, which could complicate forensics investigations...
Buffer overflow
The Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to cause a denial of service unhandled exception via an invalid RVA address function pointer in 1 an IMAGETHUNKDATA structure, involving the a OriginalFirstThunk and b FirstThunk IMAGEIMPORTDESCRIPTOR fields, or 2...
Crlf injection
CRLF injection vulnerability in the Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to spoof the information in the Image File Header tab via strings with CRLF sequences in the IMAGEEXPORTDIRECTORY array in a PE file, which could complicate forensics investigations...
CVE-2007-4463
The Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to cause a denial of service unhandled exception via an invalid RVA address function pointer in 1 an IMAGETHUNKDATA structure, involving the a OriginalFirstThunk and b FirstThunk IMAGEIMPORTDESCRIPTOR fields, or 2...
CVE-2007-4463
The Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to cause a denial of service unhandled exception via an invalid RVA address function pointer in 1 an IMAGETHUNKDATA structure, involving the a OriginalFirstThunk and b FirstThunk IMAGEIMPORTDESCRIPTOR fields, or 2...
CVE-2007-4464
CRLF injection vulnerability in the Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to spoof the information in the Image File Header tab via strings with CRLF sequences in the IMAGEEXPORTDIRECTORY array in a PE file, which could complicate forensics investigations...
CVE-2007-4464
The CVE-2007-4464 entry describes a CRLF injection vulnerability in the Fileinfo 2.0.9 plugin for Total Commander. The issue affects the plugin’s handling of PE exports: an attacker could inject CRLF sequences into the IMAGE_EXPORT_DIRECTORY data, enabling spoofing of information shown in the Ima...
CVE-2007-4463
The CVE-2007-4463 entry concerns the Fileinfo 2.0.9 plugin for Total Commander. Affected component: PE file handling within the plugin, specifically invalid RVA address function pointers in IMAGE_THUNK_DATA (OriginalFirstThunk/FirstThunk) and IMAGE_EXPORT_DIRECTORY’s AddressOfNames. Root cause: m...
Total Commander FileInfo 2.09 Plugin - Multiple PE File Denial of Service Vulnerabilities
Total Commander FileInfo 2.09 Plugin - Multiple PE File Denial of Service Vulnerabilities source: https://www.securityfocus.com/bid/25373/info The FileInfo plugin for Total Commander is prone to multiple PE file denial-of-service vulnerabilities because the plugin fails to properly handle malform...
Total Commander FileInfo 2.09 Plugin - Multiple PE File Denial of Service Vulnerabilities
source: https://www.securityfocus.com/bid/25373/info The FileInfo plugin for Total Commander is prone to multiple PE file denial-of-service vulnerabilities because the plugin fails to properly handle malformed input. Successfully exploiting these issues allows remote attackers to crash the affect...
adv73-K-159-2007.txt
----------------------------------------------------------------------------------------- ECHOADV73$2007 MySQL Commander = 2.7 home Remote File Inclusion Vulnerability ----------------------------------------------------------------------------------------- Author : M.Hasran Addahroni Date : Marc...
MySQL Commander <= 2.7 (home) Remote File Inclusion Vulnerability
No description provided by source. \ /\ / | \ | / // / | | \ \ Y / | / / \ /\| /\ / / / / / .OR.ID ECHOADV73$2007 ----------------------------------------------------------------------------------------- ECHOADV73$2007 MySQL Commander = 2.7 home Remote File Inclusion Vulnerability...
CVE-2007-1439
PHP remote file inclusion vulnerability in ressourcen/dbopen.php in bitesser MySQL Commander 2.7 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the home parameter...
CVE-2007-1439
CVE-2007-1439 describes a PHP remote file inclusion vulnerability in ressourcen/dbopen.php of bitesser MySQL Commander 2.7 and earlier. When register_globals is enabled, an attacker can cause the system to execute arbitrary PHP code by supplying a crafted URL in the home parameter. This is a clie...
[ECHO_ADV_73$2007] MySQL Commander <= 2.7 (home) Remote File Inclusion Vulnerability
----------------------------------------------------------------------------------------- ECHOADV73$2007 MySQL Commander = 2.7 home Remote File Inclusion Vulnerability ----------------------------------------------------------------------------------------- Author : M.Hasran Addahroni Date : Marc...
MySQL Commander 2.7 - home Remote File Inclusion
MySQL Commander 2.7 - home Remote File Inclusion \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV73$2007 ----------------------------------------------------------------------------------------- ECHOADV73$2007 MySQL Commander = 2.7 home Remote File...
MySQL Commander <= 2.7 (home) Remote File Inclusion Vulnerability
No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV73$2007 ----------------------------------------------------------------------------------------- ECHOADV73$2007 MySQL Commander = 2.7 home Remote File Inclusion...
MySQL Commander <= 2.7 (home) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ================================================================= MySQL Commander = 2.7 home Remote File Inclusion Vulnerability ================================================================= \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / |...
With Phoenix universal boot disk to resolve local/domain administrator password lost-vulnerability warning-the black bar safety net
The local administrator password is lost, by deleting the SAM file, or by NTPASSWORD software solution. But to solve the domain administrator password is lost, they can not do anything. Then you need to use“Phoenix universal boot disk”, this article will discuss in detail the use of this disk to...
CVE-2007-0583
Multiple cross-site scripting XSS vulnerabilities in HTTP Commander 6.0, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 LogoffMessage parameter to logofflast.aspx or the 2 txtUsername parameter to Default.aspx. NOTE: The provenance of this informatio...