Heap overflow

Multiple buffer overflows in src/ezstream.c in Ezstream before 0.3.0 allow remote attackers to execute arbitrary code via a crafted XML configuration file processed by the 1 urlParse function, which causes a stack-based overflow and the 2 ReplaceString function, which causes a heap-based overflow...

CVE-2007-1344

Multiple buffer overflows in src/ezstream.c in Ezstream before 0.3.0 allow remote attackers to execute arbitrary code via a crafted XML configuration file processed by the 1 urlParse function, which causes a stack-based overflow and the 2 ReplaceString function, which causes a heap-based overflow...

Zend Platform 2.2.1 - 'PHP.INI' File Modification

source: https://www.securityfocus.com/bid/22802/info The Zend Platform is prone to an issue that may let local attackers modify the PHP configuration file 'php.ini'. This issue occurs because the application is installed with an 'inimodifier' program that may be executed by local users and will...

MDKA-2005:047 : apcupsd

The apcupsd package as shipped with Mandriva Linux 2006 was missing the main apcupsd configuration file. As a result, those upgrading from earlier versions would have their existing configuration file moved to /etc/apcupsd/apcupsd.conf.rpmsave with no new configuration file to replace it, which...

MDKA-2006:041 : smbldap-tools

This update fixes a problem with the smbldap-tools package shipped with Mandriva Linux 2006 where it would issue warnings if the smb.conf configuration file had continuation lines using the '' character. The updated packages correct this issue. %NASLMINLEVEL 999999 @DEPRECATED@ This script has be...

NoMachine NX Server privilege escalation

nxconfigure.sh doesn't check invoking user, allowing configuration file modification...

CVE-2007-0367

Rumpus 5.1 and earlier has weak permissions for certain files and directories under /usr/local/Rumpus, including the configuration file, which allows local users to have an unknown impact by creating, modifying, or deleting files...

CVE-2007-0367

Rumpus 5.1 and earlier has weak permissions for certain files and directories under /usr/local/Rumpus, including the configuration file, which allows local users to have an unknown impact by creating, modifying, or deleting files...

CVE-2007-0367

The CVE-2007-0367 entry concerns Rumpus 5.1 and earlier, where weak permissions for files/directories under /usr/local/Rumpus (including the configuration file) allow local users to create, modify, or delete files, with an unknown impact. The available sources (NVD entry and related records) conf...

PT-2007-1565 · Freeradius · Freeradius

Name of the Vulnerable Software and Affected Versions: FreeRadius versions 1.1.3 and earlier Description: A buffer overflow issue in the SMB Connect Server function allows attackers to execute arbitrary code related to the desthost field of an SMB Handle Type instance. The impact of this issue ha...

Simple Web Content Management System - SQL Injection

Simple Web Content Management System - SQL Injection !/usr/bin/php Options.......: Example.......: php xpl.txt http://hihi.org/ /etc/passwd --------------------------------------------------------\n"; exit1; $url =$argv1;$file =$argv2; $proxh=$argv3;$proxa=$argv4; $xpl = new phpsploit;...

hlstats-sql.txt

Hlstats is more than 5 years old. HLstats has been downloaded more than 270,000 from http://sf.net. Nothing more than absolutely benign XSS has been reported for this application, until NOW. Merry Christmass, --Michael Brooks Homepage: http://sourceforge.net/projects/hlstats/ -----BEGIN PGP SIGNE...

HLStats 1.34 - 'hlstats.php' SQL Injection

= 1.20 works with magicquotesgpc=On by Michael Brooks / print "HLStats SQL Injection Exploit -------------------------------------------------------------------------------------------------------------------------------------------- Welcome To HLstats Exploit code. SQL Inection + Path Disclosure...

Pagetool CMS <= 1.07 (pt_upload.php) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ====================================================================== Pagetool CMS = 1.07 ptupload.php Remote File Include Vulnerability ====================================================================== !usr/bin/perl use...

CVE-2006-6171

ProFTPD 1.3.0a and earlier does not properly set the buffer size limit when CommandBufferSize is specified in the configuration file, which leads to an off-by-two buffer underflow. NOTE: in November 2006, the role of CommandBufferSize was originally associated with CVE-2006-5815, but this was an...

Mambo Component com_flyspray &lt; 1.0.1 - Remote File Disclosure

| \ | / | \ \ / | | | | | \ / | \ \ / / | | | | '| | |/| |/ \ / / \ / / | | '| | | / | | || | | | | | | | | \ / | | | | || \ \ |/|| || ||,//\ / ||| ,|/ Compononent name:comflyspray Affected Version:1.0.1 d.page:http://mamboxchange.com/frs/download.php/8304/comflyspray1.0.1.zip Authour: Dr...

News publication system remote File include

Software: News publication system -------------------------------- Description: News publication system provides a mechanism for news blocks publication on site in conformity with rules and templates set. Provides a mechanism for adding news to the system and news management. Provides a mechanism...

Sun iPlanet Messaging Server 5.2 HotFix 1.16 Root Password Disclosure

No description provided by source. Date: 14 Jun 2006 Vendor: Sun Microsystems, Inc. Name: iPlanet Messaging Server Version: 5.2 HotFix 1.16 built May 14 2003 Vuln: msg.conf symlink attack Severity: high Software description ---------------- The iPlanet Messaging Server is a software product that...

sphpblog多个输入验证漏洞

Simple PHP Blog是一款无需数据库支持的简单Blog程序。 sphpblog中存在多个漏洞，起因是应用程序没有正确的验证用户输入。远程攻击者可以利用这些漏洞获取敏感信息或执行任意代码。 A. 完整路径泄漏 http://Url/sphpblog/scripts/sbfunctions.php Ex: Warning: mainscripts/sbfileio.php: failed to open stream: No such file or directory in /var/www/sphpblog/scripts/sbfunctions.php on line 52...

Php League <= 0.81 (config.php) Remote File Include Exploit

Exploit for unknown platform in category web applications =========================================================== Php League PhpLeague 0.81 Remote File Include Exploit //'=============================================================================================== //'Script Name: Php League...