Lucene search
K

4690 matches found

NVD
NVD
added 2002/11/29 5:0 a.m.16 views

CVE-2002-1279

Multiple buffer overflows in conf.c for Masqmail 0.1.x before 0.1.17, and 0.2.x before 0.2.15, allow local users to gain privileges via certain entries in the configuration file -C option...

7.2CVSS6.7AI score0.00403EPSS
Exploits0References5
Cvelist
Cvelist
added 2002/11/14 5:0 a.m.24 views

CVE-2002-1279

Multiple buffer overflows in conf.c for Masqmail 0.1.x before 0.1.17, and 0.2.x before 0.2.15, allow local users to gain privileges via certain entries in the configuration file -C option...

6.6AI score0.00403EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2002/11/14 5:0 a.m.36 views

CVE-2002-1279

Removed by vendor...

7.2CVSS6.7AI score0.00403EPSS
Exploits0
securityvulns
securityvulns
added 2002/10/30 12:0 a.m.87 views

syslog-ng buffer overflow

Buffer overflow in parsing $HOST variable in configuration file...

4.3AI score
Exploits0References2Affected Software1
exploitpack
exploitpack
added 2002/10/02 12:0 a.m.11 views

TightAuction 3.0 - Config.INC Information Disclosure

TightAuction 3.0 - Config.INC Information Disclosure source: https://www.securityfocus.com/bid/5850/info TightAuction is prone to an information disclosure vulnerability. The configuration file config.inc contains sensitive information such as database authentication credentials. It is possible f...

7.2AI score
Exploits0
Exploit DB
Exploit DB
added 2002/10/02 12:0 a.m.30 views

TightAuction 3.0 - Config.INC Information Disclosure

source: https://www.securityfocus.com/bid/5850/info TightAuction is prone to an information disclosure vulnerability. The configuration file config.inc contains sensitive information such as database authentication credentials. It is possible for remote attackers to retrieve this file via a web...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2002/09/09 12:0 a.m.33 views

PHPGB 1.1/1.2 - PHP Code Injection

source: https://www.securityfocus.com/bid/5679/info phpGB is subject to a PHP code injection vulnerability. After bypassing authentication it is possible to inject code into the guestbook configuration file config.php by supplying malicious parameters for the savesettings.php script. The...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2002/08/14 12:0 a.m.199 views

Trend Micro OfficeScan ofcscan.ini Configuration File Disclosure

The remote Trend Micro OfficeScan Corporate Edition Japanese version: Virus Buster Corporate Edition web-based management console allows unauthenticated access to files under '/officescan/hotdownload'. Reading the configuration file 'ofcscan.ini' under that location will reveal information about...

5CVSS5.8AI score0.02414EPSS
Exploits0References3
NVD
NVD
added 2002/08/12 4:0 a.m.21 views

CVE-2002-0428

Check Point FireWall-1 SecuRemote/SecuClient 4.0 and 4.1 allows clients to bypass the "authentication timeout" by modifying the toexpire or expire values in the client's users.C configuration file...

7.5CVSS6.5AI score0.01574EPSS
Exploits1References3
securityvulns
securityvulns
added 2002/08/08 12:0 a.m.41 views

iSCSI weak permissions

File /etc/iscsi.conf is open for writing...

1.4AI score
Exploits0References1
NVD
NVD
added 2002/07/03 4:0 a.m.11 views

CVE-2002-0552

Multiple buffer overflows in Melange Chat server 2.02 allow remote or local attackers to cause a denial of service crash and possibly execute arbitrary code via 1 a long argument in the /yell command, 2 long lines in the /etc/melange.conf configuration file, 3 long file names, or possibly other...

7.5CVSS8AI score0.08618EPSS
Exploits1References8
CVE
CVE
added 2002/06/25 4:0 a.m.69 views

CVE-2001-1162

Summary of CVE-2001-1162: A directory traversal flaw in the Samba SMB server permits remote overwriting of files via the NetBIOS name used for a log file. The vulnerability stems from the %m macro in smb.conf, allowing a path like ‘..’ to reference files outside the intended log location. Affecte...

10CVSS6.5AI score0.12032EPSS
Exploits1References13Affected Software1
Exploit DB
Exploit DB
added 2002/06/13 12:0 a.m.27 views

Working Resources 1.7.3 BadBlue - Null Byte File Disclosure

source: https://www.securityfocus.com/bid/5226/info BadBlue is a P2P file sharing application distributed by Working Resources. It is available for Microsoft Windows operating systems. It has been discovered that a request passed to a BadBlue server containing a null byte at the end of a file nam...

7AI score
Exploits0
Cvelist
Cvelist
added 2002/06/11 4:0 a.m.31 views

CVE-2002-0568

Oracle 9i Application Server stores XSQL and SOAP configuration files insecurely, which allows local users to obtain sensitive information including usernames and passwords by requesting 1 XSQLConfig.xml or 2 soapConfig.xml through a virtual directory...

8.4AI score0.75176EPSS
Exploits0References5
Cvelist
Cvelist
added 2002/06/11 4:0 a.m.17 views

CVE-2002-0428

Check Point FireWall-1 SecuRemote/SecuClient 4.0 and 4.1 allows clients to bypass the "authentication timeout" by modifying the toexpire or expire values in the client's users.C configuration file...

6.5AI score0.01574EPSS
Exploits1References3
securityvulns
securityvulns
added 2002/06/04 12:0 a.m.57 views

Cleartext password in Volution Manager

Cleartext password stored in /etc/ldap/slapd.conf...

2.1AI score
Exploits0References1Affected Software1
NVD
NVD
added 2002/05/31 4:0 a.m.16 views

CVE-2002-0274

Exim 3.34 and earlier may allow local users to gain privileges via a buffer overflow in long -C configuration file and other command line arguments...

4.6CVSS7.2AI score0.0038EPSS
Exploits0References4
exploitpack
exploitpack
added 2002/05/31 12:0 a.m.27 views

QNX RTOS 4.25 - CRTTrap File Disclosure

QNX RTOS 4.25 - CRTTrap File Disclosure source: https://www.securityfocus.com/bid/4901/info The QNX RTOS crttrap binary includes a command-line option for specifying a configuration file. crttrap is installed setuid by default. crttrap Local attackers may specify an arbitrary system file in place...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2002/04/29 12:0 a.m.50 views

QPopper 4.0.4 buffer overflow

Affected versions 4.0.3 and 4.0.4. default install. Servers, not processing users configuration file /.qpopper-options are insensible to this bug. popbull.c ----------- int CopyOneBull POP p, long bnum, char name FILE bull; char buffer MAXMSGLINELEN ; BOOL inheader = TRUE; BOOL firstline = TRUE;...

0.6AI score
Exploits0
securityvulns
securityvulns
added 2002/04/09 12:0 a.m.68 views

Unauthorized remote control access to Funk Proxy

Weak file permissions, decryptable password and unauthorized access to configuration file allow to obtain administrator's password...

4.1AI score
Exploits0References1Affected Software2
Rows per page
Query Builder