DSA-335 mantis - incorrect permissions

Bulletin has no description...

Portmon file arbitrary read/write access vulnerability

Package: Portmon Auth: http://www.aboleo.net/ Versions: 1.7 prior ? Vulnerability: File arbitrary read/write access vulnerability Portmon is a network service monitoring daemon http://www.aboleo.net/software/portmon/. "In order to use ping support, Portmon must run as root or be installed setuid...

Low: Red Hat Security Advisory: lv security update

Updated lv packages that fix the possibility of local privilege escalation are now available. Lv is a powerful file viewer similar to less. It can decode and encode multilingual streams through many coding systems, such as ISO-8859, ISO-2022, EUC, SJIS Big5, HZ, and Unicode. A bug has been found ...

Apple QuickTimeDarwin Streaming MP3Broadcaster - ID3 Tag Handling

Apple QuickTimeDarwin Streaming MP3Broadcaster - ID3 Tag Handling source: https://www.securityfocus.com/bid/7660/info MP3Broadcaster is shipped as part of Darwin Streaming Server software. MP3Broadcaster has been reported prone to a vulnerability when processing malicious ID3 tags. This is likely...

quotacheck security fix in rc.M

An upgraded sysvinit package is available which fixes a problem with the use of quotacheck in /etc/rc.d/rc.M. The original version of rc.M calls quotacheck like this: echo "Checking filesystem quotas: /sbin/quotacheck -avugM" /sbin/quotacheck -avugM The 'M' option is wrong. This causes the...

[SECURITY] [DSA-304-1] New lv packages fix local privilege escalation

-------------------------------------------------------------------------- Debian Security Advisory DSA 304-1 [email protected] http://www.debian.org/security/ Matt Zimmerman May 15th, 2003 http://www.debian.org/security/faq -...

DSA-304 lv - privilege escalation

Bulletin has no description...

Mike Bobbitt Album.PL 0.61 - Remote Command Execution

Mike Bobbitt Album.PL 0.61 - Remote Command Execution source: https://www.securityfocus.com/bid/7444/info A remote command execution vulnerability has been reported for Album.pl. The vulnerability reportedly exists when alternate configuration files are used. The precise technical details of this...

EZ Publish 2.2.73.0 - site.ini Information Disclosure

EZ Publish 2.2.73.0 - site.ini Information Disclosure source: https://www.securityfocus.com/bid/7347/info eZ Publish has been reported prone to sensitive information disclosure vulnerability. An attacker may make a request for and download the underlying site.ini configuration file. The file...

Super Guestbook superguestconfig Admin Password Disclosure

The remote server is running Super GuestBook, a set of php scripts to manage an interactive guestbook. An attacker may retrieve the file /superguestconfig, which contains the password of the guestbook administrator as well as other configuration details. %NASLMINLEVEL 70300 C Tenable Network...

Disclosing information in Super GuestBook

Product: Super GuestBook Version: 1.0 OffSite: http://www.lasource.r2.ru/ Problem: Disclosing information ----------------------------------------- View file http://target/cgi-bin/SGBDIR/superguestconfig and you view configuration of the Super guestbook. View "Password" field and you view passwor...

AutomatedShops WebC 2.0/5.0 - Symbolic Link Following Configuration File

source: https://www.securityfocus.com/bid/7272/info It has been reported that WebC will execute in the directory of a symbolic link from which it is invoked. Because of this, it may be possible for a local user to load a configuration file that enabled dangerous variables. $ cd /tmp $ ln -s...

AutomatedShops WebC 2.05.0 - Symbolic Link Following Configuration File

AutomatedShops WebC 2.05.0 - Symbolic Link Following Configuration File source: https://www.securityfocus.com/bid/7272/info It has been reported that WebC will execute in the directory of a symbolic link from which it is invoked. Because of this, it may be possible for a local user to load a...

CVE-2002-0889

CVE-2002-0889 describes a buffer overflow in Qpopper (popper) 4.0.4 and earlier. The flaw allows local users to cause a denial of service and potentially execute arbitrary code via a long bulldir argument in the user’s .qpopper-options configuration file. Affected software is Qpopper up to versio...

CVE-2002-0889

Buffer overflow in Qpopper popper 4.0.4 and earlier allows local users to cause a denial of service and possibly execute arbitrary code via a long bulldir argument in the user's .qpopper-options configuration file...

CVE-2003-0150

MySQL 3.23.55 and earlier creates world-writeable files and allows mysql users to gain root privileges by using the "SELECT INFO OUTFILE" operator to overwrite a configuration file and cause mysql to run as root upon restart, as demonstrated by modifying my.cnf...

3com RAS 1500 Remote vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Synopsis: 3com RAS 1500 Remote vulnerabilities. Product: 3C433279A-US http://www.3com/ras1500 Version: Firmware X2.0.10 URL: http://isec.pl/vulnerabilities/isec-0009-3com-ras.txt Author: Piotr Chytla [email protected] Date: February 27, 2003 Issue: - ------...

NetGear wireless router unauthorized access

Web interface allows access to configuration file...

Bug in Netgear FM114P Wireless Router firmware

hi, i found out that the netgear FM114P wireless router has a directory-traversal like bug in the web-configuration interface. documents/files can be accessed without authentication by using escaped directory traversal from the accessible /upnp/service directory. this results f.ex. in the ability...

NETGEAR FM114P Wireless Firewall - File Disclosure

NETGEAR FM114P Wireless Firewall - File Disclosure source: https://www.securityfocus.com/bid/6807/info Netgear FM114P Wireless Firewalls allow directory traversal using escaped character sequences. It is possible for an unauthenticated user to retrieve the firewall's configuration file by escapin...