CVE-2005-4582

Electric Sheep 2.6.3 does not require authentication or integrity checks from the server to the client, which allows remote attackers to download and display arbitrary MPEG movie files via 1 DNS spoofing, 2 a URL on the command line, or 3 a URL in the configuration file. NOTE: the same attack...

CVE-2005-4582

Electric Sheep 2.6.3 does not require authentication or integrity checks from the server to the client, which allows remote attackers to download and display arbitrary MPEG movie files via 1 DNS spoofing, 2 a URL on the command line, or 3 a URL in the configuration file. NOTE: the same attack...

From the background to give the webshell tips great summary-vulnerability warning-the black bar safety net

Foreword Moving webonexploit, I believe we scored a lot of chickens. Can say ismoving weblet upfile. asp Upload file filter is not strict. vulnerabilitysho ran the world, Now thisvulnerabilityhas been substantially more difficult to meet, do not rule out some small sites still exist for...

CVE-2004-2610

CVE-2004-2610 affects mntd. The issue is in mntd_mount.c in mntd before 0.4.2, where local users may gain privileges via shell metacharacters in a remount option within the configuration file. The underlying cause is the handling of shell metacharacters in the remount option, enabling elevation o...

Coppermine Photo Gallery 1.3.2 - File Retrieval SQL Injection

Coppermine Photo Gallery 1.3.2 - File Retrieval SQL Injection tested and approved /str0ke CPG Exploit File Retrieval by SQL Injection. By Default this exploit get the config.inc.php file which contains the db user/pass If you want to get another file you need to have the good cookie you can use...

Sun Java System Communications Express information leak

It's possible to access configuration file which contains sensitive information...

OfficeScan configuration file disclosure

Trend Micro OfficeScan Corporate Edition Japanese version: Virus Buster Corporate Edition web-based management console let anybody access /officescan/hotdownload without authentication. Reading the configuration file /officescan/hotdownload/ofcscan.ini will reveal information on your system. More...

BadBlue invalid null byte vulnerability

It was possible to read the content of /EXT.INI BadBlue configuration file by sending an invalid GET request. SPDX-FileCopyrightText: 2002 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier...

BadBlue invalid null byte vulnerability

It was possible to read the content of /EXT.INI BadBlue configuration file by sending an invalid GET request. A cracker may exploit this vulnerability to steal the passwords. OpenVAS Vulnerability Test $Id: badbluenullbyte.nasl 7175 2017-09-18 11:55:15Z cfischer $ Description: BadBlue invalid nul...

vqServer administrative port

vqSoft's vqServer administrative port is open. Brute force guessing of the username/password is possible, and a bug in versions 1.9.9 and below allows configuration file retrieval remotely. For more information, see:...

Oracle XSQLServlet XSQLConfig.xml File

It is possible to read the contents of the XSQLConfig.xml file which contains sensitive information. OpenVAS Vulnerability Test $Id: oracle9iXSQLServletXSQLConfig.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: Oracle XSQLServlet XSQLConfig.xml File Authors: Matt Moore Copyright: Copyright C...

openvpn -- arbitrary code execution on client through malicious or compromised server

James Yonan reports: A format string vulnerability in the foreignoption function in options.c could potentially allow a malicious or compromised server to execute arbitrary code on the client. Only non-Windows clients are affected. The vulnerability only exists if a the client's TLS negotiation...

fetchmail fetchmailconf race conditions

During configuration file creation there are race conditions file is world readable...

Low: Red Hat Security Advisory: fetchmail security update

Updated fetchmail packages that fix insecure configuration file creation is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Fetchmail is a remote mail retrieval and forwarding utility. A bug was found in the way the fetchmailconf...

[SA17134] PHP Advanced Transfer Manager HTML Upload Vulnerability

TITLE: PHP Advanced Transfer Manager HTML Upload Vulnerability SECUNIA ADVISORY ID: SA17134 VERIFY ADVISORY: http://secunia.com/advisories/17134/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: PHP Advanced Transfer Manager 1.x...

CVE-2005-2962

The post-installation script for ntlmaps before 0.9.9 sets world-readable permissions for the configuration file, which allows local users to obtain the username and password...

CVE-2005-2962

The post-installation script for ntlmaps before 0.9.9 sets world-readable permissions for the configuration file, which allows local users to obtain the username and password...

CVE-2005-2962

Removed by vendor...

PT-2005-3760 · Filezilla · Filezilla

Name of the Vulnerable Software and Affected Versions: FileZilla versions 2.2.14b through 2.2.15 FileZilla versions prior to 2.2.14b Description: The issue concerns the use of a weak encryption scheme to store user passwords in the configuration settings file when "Use secure mode" is disabled...

CVE-2005-2807

frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option...