[CSS09-01] SlideShowPro Director File Disclosure Vulnerability

CSS09-01: SlideShowPro Director File Disclosure Vulnerability August 5, 2009 SUMMARY SlideShowPro Director is vulnerable to a file disclosure flaw because it fails to perform proper validation and handling of input parameters. Attackers can exploit this vulnerability to read arbitrary files from...

Important: Red Hat Security Advisory: JBoss Enterprise Application Platform 4.2.0.CP07 update

Updated JBoss Enterprise Application Platform JBEAP 4.2 packages that fix various issues are now available for Red Hat Enterprise Linux 4 as JBEAP 4.2.0.CP07. This update has been rated as having important security impact by the Red Hat Security Response Team. JBoss Enterprise Application Platfor...

RedHat Security Advisory RHSA-2009:0446

The remote host is missing updates announced in advisory RHSA-2009:0446. modjk is an Apache Tomcat connector that allows Apache Tomcat and the Apache HTTP Server to communicate with each other. An information disclosure flaw was found in modjk. In certain situations, if a faulty client set the...

Important: Red Hat Security Advisory: mod_jk security update

An updated modjk package that fixes a security issue is now available for Red Hat Application Stack v2. This update has been rated as having important security impact by the Red Hat Security Response Team. modjk is an Apache Tomcat connector that allows Apache Tomcat and the Apache HTTP Server to...

FreeBSD : cvs -- numerous vulnerabilities (d2102505-f03d-11d8-81b0-000347a4fa7d)

A number of vulnerabilities were discovered in CVS by Stefan Esser, Sebastian Krahmer, and Derek Price. - Insufficient input validation while processing 'Entry' lines. CVE-2004-0414 - A double-free resulting from erroneous state handling while processing 'Argumentx' commands. CVE-2004-0416 -...

CVE-2009-1285

Static code injection vulnerability in the getConfigFile function in setup/lib/ConfigFile.class.php in phpMyAdmin 3.x before 3.1.3.2 allows remote attackers to inject arbitrary PHP code into configuration files...

CVE-2009-1285

Static code injection vulnerability in the getConfigFile function in setup/lib/ConfigFile.class.php in phpMyAdmin 3.x before 3.1.3.2 allows remote attackers to inject arbitrary PHP code into configuration files...

Code injection

Static code injection vulnerability in the getConfigFile function in setup/lib/ConfigFile.class.php in phpMyAdmin 3.x before 3.1.3.2 allows remote attackers to inject arbitrary PHP code into configuration files...

CVE-2009-1285

Static code injection vulnerability in the getConfigFile function in setup/lib/ConfigFile.class.php in phpMyAdmin 3.x before 3.1.3.2 allows remote attackers to inject arbitrary PHP code into configuration files...

CVE-2009-1285

Static code injection vulnerability in the getConfigFile function in setup/lib/ConfigFile.class.php in phpMyAdmin 3.x before 3.1.3.2 allows remote attackers to inject arbitrary PHP code into configuration files...

CVE-2009-1285

phpMyAdmin 3.x is affected by a static code injection in the getConfigFile function (setup/lib/ConfigFile.class.php) prior to 3.1.3.2, allowing remote attackers to inject arbitrary PHP into configuration files. Documented CVSS base 7.5 (HIGH) with network access and no authentication. Remediation...

CVE-2009-1285

Static code injection vulnerability in the getConfigFile function in setup/lib/ConfigFile.class.php in phpMyAdmin 3.x before 3.1.3.2 allows remote attackers to inject arbitrary PHP code into configuration files...

Mandriva Update for proftpd MDKSA-2007:130 (proftpd)

Check for the Version of proftpd OpenVAS Vulnerability Test Mandriva Update for proftpd MDKSA-2007:130 proftpd Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

pam-krb5 < 3.13 Local Privilege Escalation Exploit

Exploit for linux platform in category local exploits ================================================== pam-krb5 3.13 Local Privilege Escalation Exploit ================================================== / cve-2009-0360.c pam-krb5 3.13 local privilege escalation Information:...

CVE-2009-0912

perl-MDK-Common 1.1.11 and 1.1.24, 1.2.9 through 1.2.14, and possibly other versions, in Mandriva Linux does not properly handle strings when writing them to configuration files, which allows attackers to gain privileges via "special characters" in unspecified vectors...

Design/Logic Flaw

perl-MDK-Common 1.1.11 and 1.1.24, 1.2.9 through 1.2.14, and possibly other versions, in Mandriva Linux does not properly handle strings when writing them to configuration files, which allows attackers to gain privileges via "special characters" in unspecified vectors...

CVE-2009-0912

perl-MDK-Common 1.1.11 and 1.1.24, 1.2.9 through 1.2.14, and possibly other versions, in Mandriva Linux does not properly handle strings when writing them to configuration files, which allows attackers to gain privileges via "special characters" in unspecified vectors...

Mandrake Security Advisory MDVSA-2009:072 (perl-MDK-Common)

The remote host is missing an update to perl-MDK-Common announced via advisory MDVSA-2009:072. OpenVAS Vulnerability Test $Id: mdksa2009072.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:072 perl-MDK-Common Authors: Thomas Reinke Copyright: Copyrigh...

Design/Logic Flaw

Unspecified vulnerability in the Java agent in Cisco Application Networking Manager ANM before 2.0 Update A allows remote attackers to gain privileges, and cause a denial of service service outage by stopping processes, or obtain sensitive information by reading configuration files...

CVE-2009-0618

Unspecified vulnerability in the Java agent in Cisco Application Networking Manager ANM before 2.0 Update A allows remote attackers to gain privileges, and cause a denial of service service outage by stopping processes, or obtain sensitive information by reading configuration files...