phpMyAdmin '$_SESSION'数列未授权访问漏洞

Bugtraq ID: 48480 phpMyAdmin是一款基于PHP的MySQL管理程序。 phpMyAdmin存在多个安全漏洞： 1，超级全局$SESSION数列中的任意变量可覆盖或使用任意值创建。 2，phpMyAdmin中的一个错误配置允许$SESSION数列中的内容写入到.php-file中，组合1漏洞可能执行任意代码。 3，$SESSION数列中的内容post验证用于函数输入可执行PHP代码。 phpMyAdmin 3.4.0 厂商解决方案 目前没有详细解决方案提供： http://www.phpmyadmin.net/...

Apache HTTP Server "AllowOverride"和"Options"安全绕过漏洞

Bugraq ID: 35115 CVE ID：CVE-2009-1195 CNCVE ID：CNCVE-20091195 Apache是一款开放源代码的WEB服务程序。 Apache在处理".htaccess"文件中的"AllowOverride"和部分"options"参数存在错误，可导致通过SSI执行命令。 如下的配置存在安全问题： a 如果"AllowOverride Options=IncludesNoEXEC"配置在httpd.conf中，用户可以在.htaccess文件中设置"Options Includes"，SSI将会以exec=允许方式启用。...

MDVA-2009:057 : usermode

A configuration error in usermode was preventing some Mandriva graphical tools requiring superuser privileges to be started correctly if session was started from KDM. This updates fixes this issue. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not...

CVE-2008-5397

Tor before 0.2.0.32 does not properly process the 1 User and 2 Group configuration options, which might allow local users to gain privileges by leveraging unintended supplementary group memberships of the Tor process...

Debian Security Advisory DSA 032-1 (proftpd)

The remote host is missing an update to proftpd announced via advisory DSA 032-1. OpenVAS Vulnerability Test $Id: deb0321.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 032-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 032-1 (proftpd)

The remote host is missing an update to proftpd announced via advisory DSA 032-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MySQLDumper Apache访问控制验证绕过漏洞

MySQLDumper是一款备份MySQL数据库的备份脚本。 在Apache访问控制文件中存在配置错误，远程攻击者可以利用漏洞绕过验证删除Apache的访问控制文件，获得对保护文件的访问。 由于MySQLDumper包含的main.php对用户提交的 HTTP POST请求缺少验证，攻击者可以利用漏洞删除.htaccess/.htpasswd文件，访问受保护的文件信息。 MySQLDumper MySQLDumper Typo3-Extension 0.0.5 MySQLDumper MySQLDumper 1.23prereleaseREV MySQLDumper MySQLDumpe...

CVE-2006-6171

ProFTPD 1.3.0a and earlier does not properly set the buffer size limit when CommandBufferSize is specified in the configuration file, which leads to an off-by-two buffer underflow. NOTE: in November 2006, the role of CommandBufferSize was originally associated with CVE-2006-5815, but this was an...

Hacking quest dove gray is not on-line analysis summary-vulnerability warning-the black bar safety net

Not automatically on-line of reason: 1. You do not have public IP or you are within the network did not do the appropriate port mapping; 2. You opened the firewall closes the Dove gray to use to the port; 3. You do not have to update the IP to your domain name; 4. Your service-side configuration...

[Full-disclosure] iDefense Security Advisory 11.11.05: Multiple Vendor Lynx Command Injection Vulnerability

Multiple Vendor Lynx Command Injection Vulnerability iDefense Security Advisory 11.11.05 www.idefense.com/application/poi/display?id=338&type=vulnerabilities November 11, 2005 I. BACKGROUND Lynx is a fully-featured WWW client for users running cursor- addressable, character-cell display devices...

DSA-845-1 mason - programming error

Bulletin has no description...

PTL_advisory_050825.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ================================================================= P . T . L . P I N I O N S T E K N I S K A L A B O R A T O R I U M The Pinion Technical Laboratory http://www.pinion.se Advisory...

CVE-2005-1345

Squid 2.5.STABLE9 and earlier does not trigger a fatal error when it identifies missing or invalid ACLs in the httpaccess configuration, which could lead to less restrictive ACLs than intended by the administrator...

Debian DSA-032-1 : proftpd - proftpd running with incorrect userid, erroneous file removal

The following problems have been reported for the version of proftpd in Debian 2.2 potato : - There is a configuration error in the postinst script, when the user enters 'yes', when asked if anonymous access should be enabled. The postinst script wrongly leaves the 'run as uid/gid root'...

Debian proftpd root Privilege Escalation

Binary data 1817.prm...

Mandrake Linux Security Advisory : mod_ssl (MDKSA-2002:048)

Frank Denis discovered an off-by-one error in modssl dealing with the handling of older configuration directorives the rewritecommand hook. A malicious user could use a specially crafted .htaccess file to execute arbitrary commands as the apache user or execute a DoS against the apache child...

RedHat Apache 2.0.40 - Directory Index Default Configuration Error

source: https://www.securityfocus.com/bid/8898/info The Red Hat Apache configuration may allow an attacker to view directory listings. The problem is reported to present itself when an attacker issues an HTTP GET request to a vulnerable server containing '//' characters, evading the rule desgined...

RedHat Apache 2.0.40 - Directory Index Default Configuration Error

RedHat Apache 2.0.40 - Directory Index Default Configuration Error source: https://www.securityfocus.com/bid/8898/info The Red Hat Apache configuration may allow an attacker to view directory listings. The problem is reported to present itself when an attacker issues an HTTP GET request to a...

ProFTPD on Debian Linux postinst Installation Privilege Escalation

The following problems have been reported for the version of proftpd in Debian 2.2 potato: 1. There is a configuration error in the postinst script, when the user enters 'yes', when asked if anonymous access should be enabled. The postinst script wrongly leaves the 'run as uid/gid root'...

CVE-2001-1387

The CVE-2001-1387 entry concerns the iptables package, specifically iptables-save in versions before 1.2.4. The issue is that iptables-save records the --reject-with icmp-host-prohibited rule as --reject-with tcp-reset, causing generated responses to diverge from the administrator’s configuration...