Remote code injection in phpMyAdmin

This vulnerability would allow remote user to inject PHP code to be executed by eval function. This vulnerability is only exploitable if variable $cfg'LeftFrameLight' is set to FALSE in file config.inc.php...

edimaxBackdoor.txt

Vendor: Edimax Type: 7205APL Firmware: 2.40a-00 Kind of bug: Security Description: Normally a user called addmin, has to create a password on the Accesspoint. When you create a back-up of the settings of your Accesspoint, it will result in a config.bin file. Opening the file in Notepad gave the...

EDIMAX Wireless AP Default Password Check

The remote EDIMAX Wireless Access Point ships with a default account 'guest' / '1234' that has backup privileges on the remote configuration file. A remote attacker can exploit this to obtain a plaintext password for the administrator account by doing a backup of the remote configuration file...

[SECURITY] [DSA 509-1] New gatos packages fix privilege escalation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 509-1 [email protected] http://www.debian.org/security/ Matt Zimmerman May 29th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 509-1] New gatos packages fix privilege escalation

-------------------------------------------------------------------------- Debian Security Advisory DSA 509-1 [email protected] http://www.debian.org/security/ Matt Zimmerman May 29th, 2004 http://www.debian.org/security/faq -...

DSA-509 gatos - privilege escalation

Bulletin has no description...

CVE-2004-0382

Unknown vulnerability in the CUPS printing system in Mac OS X 10.3.3 and Mac OS X 10.2.8 with unknown impact, possibly related to a configuration file setting...

Sun Solaris SSH Daemon fails to properly log client IP addresses

Overview The Sun Solaris Secure Shell Daemon sshd may incorrectly log client IP addresses. Description SSH is a program used to provide secure connection and communications between client and servers. Upon connecting to the service, the client's IP address is logged. There is a vulnerability in t...

CVE-2004-0382

Technical details are not publicly available in the provided documents for CVE-2004-0382. Monitor for updates; the entries show unknown impact and lack concrete root cause/exploit information.

Centrinity FirstClass Desktop Client 7.1 - Local Buffer Overflow

// source: https://www.securityfocus.com/bid/10074/info It has been reported that FirstClass Desktop Client may be prone to a local buffer overflow vulnerability that could allow attackers to execute arbitrary code on a vulnerable system that may lead to elevated privileges. The issue is reported...

Apache mod_alias vulnerable to buffer overflow via crafted regular expression

Overview A vulnerability in a supplementary module to the Apache HTTP server could allow an attacker to execute arbitrary code on an affected web server under certain circumstances. Description The Apache HTTP server distribution includes a number of supplemental modules that provide additional...

Lotus Notes Domino 6.0.2 (linux) faulty default permissions

Lotus Notes Domino 6.0.2 linux for the installation it is recommended to add a new user like "notes". after this you should log in as root install the services. well, after i have done this i have noticed the following. there are faulty default permissions for the important configuration file...

CVE-2004-0029

Lotus Notes Domino 6.0.2 on Linux installs the notes.ini configuration file with world-writable permissions, which allows local users to modify the Notes configuration and gain privileges...

CVE-2003-1456

Album.pl 6.1 allows remote attackers to execute arbitrary commands, when an alternative configuration file is used, via unknown attack vectors...

PHP-Coolfile version 1.4 unauthorized access

/ --------------------------------- RusH security team advisory --------------------------------- www.rsteam.ru http://rst.void.ru / // Product: PHP-Coolfile Version: 1.4 Vuln: unauthorized access OffSite: http://dcom.bip.ru/coolfile/ // Date: 11/11/2003 Author: 1dt.w0lf // RsT // Problem: ======...

SuSE Linux Professional 8.2 - SuSEWM Configuration File Insecure Temporary File

SuSE Linux Professional 8.2 - SuSEWM Configuration File Insecure Temporary File // source: https://www.securityfocus.com/bid/8778/info A problem exists in the SuSEWM configuration file used by SuSEConfig. Because of this, it may be possible for a local attacker to gain elevated privileges. / Proo...

SuSE Linux Professional 8.2 - SuSEWM Configuration File Insecure Temporary File

// source: https://www.securityfocus.com/bid/8778/info A problem exists in the SuSEWM configuration file used by SuSEConfig. Because of this, it may be possible for a local attacker to gain elevated privileges. / Proof of Concept for SuSEconfig.vmware Symbolic Link. Tested on SuSE 8.2. Nash Leon ...

Apache Httpd < 1.3.29 : Local configuration regular expression overflow

By using a regular expression with more than 9 captures a buffer overflow can occur in modalias or modrewrite. To exploit this an attacker would need to be able to create a carefully crafted configuration file .htaccess or httpd.conf...

Apache Httpd < 2.0.48 : Local configuration regular expression overflow

By using a regular expression with more than 9 captures a buffer overflow can occur in modalias or modrewrite. To exploit this an attacker would need to be able to create a carefully crafted configuration file .htaccess or httpd.conf...

Important: Red Hat Security Advisory: : : : New PHP packages fix vulnerabilities

Updated PHP packages are available for Red Hat Linux on IBM iSeries and pSeries systems. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP server. The mail function in PHP 4.x to 4.2.2 may allow local script authors to bypass safe mode restrictions and modify command...