CVE-2005-2807

frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option...

CVE-2005-2807

frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option...

CVE-2005-2807

CVE-2005-2807 affects frox 0.7.18. When running setuid root, it does not properly drop privileges while reading a configuration file, allowing local users to read portions of arbitrary files via the -f option. The linked Red Hat, Ubuntu, and NVD entries corroborate the local, file-read impact but...

MPlayer: Heap overflow in ad_pcm.c

Background MPlayer is a media player capable of handling multiple multimedia file formats. Description Sven Tantau discovered a heap overflow in the code handling the strf chunk of PCM audio streams. Impact An attacker could craft a malicious video or audio file which, when opened using MPlayer,...

CVE-2004-2353

BugPort before 1.099 stores its configuration file conf/config.conf under the web document root with a file extension that is not normally parsed by web servers, which allows remote attackers to obtain sensitive information...

CVE-2004-2353

BugPort prior to 1.099 stores its configuration file (conf/config.conf) under the web document root with an unparsed file extension, enabling remote disclosure of sensitive information. Affected product: BugPort (versions before 1.099). Root cause: sensitive config file placed in a location serve...

Multiple Mentor ADSL router vulnerabilities

Undocumented Web-interface TCP/5678, no passwords in default configuration, DoS, cleartext passwords in configuration file...

kshoutaxs.txt

=========================================================== ============================================================ Title: Kshout Data Disclosure Vulnerability Discovery: SoulBlack - Security Research - http://soulblack.com.ar Date: 26/07/2005 Severity: Medium. Remote users can view...

Kshout Data Disclosure

=========================================================== ============================================================ Title: Kshout Data Disclosure Vulnerability Discovery: SoulBlack - Security Research - http://soulblack.com.ar Date: 26/07/2005 Severity: Medium. Remote users can view...

osCommerce update.php readme_file Parameter Arbitrary File Disclosure

The osCommerce installation on the remote host has a supplementary script, 'extras/update.php', that fails to validate user-supplied input to the 'readmefile' parameter before using that to display a file. An attacker can exploit this flaw to read arbitrary files on the remote host, such as the...

PT-2005-3138 · Capturix · Capturix Scanshare

Name of the Vulnerable Software and Affected Versions: Capturix ScanShare version 1.06 build 50 Description: The issue concerns the storage of sensitive information, such as passwords, in cleartext within the capturixss cfg.ini file. This file is readable by local users, potentially exposing the...

DSA-735-2 sudo - pathname validation race

Bulletin has no description...

Debian DSA-735-1 : sudo - pathname validation race

A local user who has been granted permission to run commands via sudo could run arbitrary commands as a privileged user due to a flaw in sudo's pathname validation. This bug only affects configurations which have restricted user configurations prior to an ALL directive in the configuration file. ...

DSA-735-1 sudo - pathname validation race

Bulletin has no description...

CVE-2002-1810

CVE-2002-1810 - Affected product: D-Link DWL-900AP+ Access Point, versions 2.1 through 2.2. Vulnerability: Remote attackers can access the TFTP server without authentication and read the config.img file. Impact: config.img contains sensitive information such as the administrative password, WEP en...

JBoss 3.x/4.0.2 - HTTP Request Remote Information Disclosure

source: https://www.securityfocus.com/bid/13985/info JBoss is prone to a remote information-disclosure vulnerability. The issue occurs in the 'org.jboss.web.WebServer' class and is due to a lack of sufficient sanitization of user-supplied request data. Information that attackers can harvest throu...

CVE-2005-1828

D-Link DSL-504T stores usernames and passwords in cleartext in the router configuration file, which allows remote attackers to obtain sensitive information...

CVE-2005-1705

gdb before 6.3 searches the current working directory to load the .gdbinit configuration file, which allows local users to execute arbitrary commands as the user running gdb...

CVE-2005-1705

gdb before 6.3 searches the current working directory to load the .gdbinit configuration file, which allows local users to execute arbitrary commands as the user running gdb...

CVE-2005-1705

gdb before 6.3 searches the current working directory to load the .gdbinit configuration file, which allows local users to execute arbitrary commands as the user running gdb...