CVE-2004-0913

Unknown vulnerability in ecartis 0.x before 0.129a+1.0.0-snap20020514-1.3 and 1.x before 1.0.0+cvs.20030911-8 allows attackers in the same domain to gain administrator privileges and modify configuration...

Mozilla Firefox < 1.7.6 Multiple Vulnerabilities

Binary data 2671.prm...

CVE-2004-1714

CVE-2004-1714 affects BlackICE PC Protection and Server Protection. The issue arises from installation of firewall.ini, blackice.ini, sigs.ini, and protect.ini with Everyone Full Control permissions, enabling a local attacker to crash the service or modify configuration by editing firewall.ini (e...

CVE-2004-1714

BlackICE PC Protection and Server Protection installs 1 firewall.ini, 2 blackice.ini, 3 sigs.ini and 4 protect.ini with Everyone Full Control permissions, which allows local users to cause a denial of service crash or modify configuration, as demonstrated by modifying firewall.ini to contain a...

Mozilla Firefox < 1.0.1 Multiple Vulnerabilities

Binary data 2652.prm...

CVE-2004-1557

MyWebServer 1.0.3 allows remote attackers to bypass authentication, modify configuration, and read arbitrary files via a direct HTTP request to 1 /admin or 2 ServerProperties.html...

CVE-2005-0232

Firefox 1.0 allows remote attackers to modify Boolean configuration parameters for the about:config site by using a plugin such as Flash, and the -moz-opacity filter, to display the about:config site then cause the user to double-click at a certain screen position, aka "Fireflashing."...

CVE-2004-0913

Unknown vulnerability in ecartis 0.x before 0.129a+1.0.0-snap20020514-1.3 and 1.x before 1.0.0+cvs.20030911-8 allows attackers in the same domain to gain administrator privileges and modify configuration...

CVE-2004-2126

The upgrade for BlackICE PC Protection 3.6 and earlier sets insecure permissions for .INI files such as 1 blackice.ini, 2 firewall.ini, 3 protect.ini, or 4 sigs.ini, which allows local users to modify BlackICE configuration or possibly execute arbitrary code by exploiting vulnerabilities in the...

CVE-2004-0913

Unknown vulnerability in ecartis 0.x before 0.129a+1.0.0-snap20020514-1.3 and 1.x before 1.0.0+cvs.20030911-8 allows attackers in the same domain to gain administrator privileges and modify configuration...

CVE-2004-2556

NetGear WG602 aka WG602v1 Wireless Access Point firmware 1.04.0 and 1.5.67 has a hardcoded account of username "super" and password "5777364", which allows remote attackers to modify the configuration...

CVE-2004-2739

The setup routine setup.php in PHProjekt 4.2.1 and earlier allows remote attackers to modify system configuration via unknown attack vectors...

PT-2004-2618 · Unknown · Blackice Server Protection +1

Name of the Vulnerable Software and Affected Versions: BlackICE PC Protection and Server Protection affected versions not specified Description: The issue allows local users to cause a denial of service or modify configuration due to the installation of certain files with Everyone Full Control...

osTicket setup.php Accessibility

The target is running at least one instance of an improperly secured installation of osTicket and allows access to setup.php. Since that script does not require authenticated access, it is possible for an attacker to modify osTicket's configuration using a specially crafted call to setup.php to...

Sphera HostingDirector 1.0/2.0/3.0 - VDS Control Panel Account Configuration Modification

source: https://www.securityfocus.com/bid/7896/info Sphera HostingDirector VDS Control Panel has been reported prone to a vulnerability where an attacker may make arbitrary account configuration modifications. It has been reported that an attacker, may connect to the HostingDirector server and...

CVE-2003-0240

The web-based administration capability for various Axis Network Camera products allows remote attackers to bypass access restrictions and modify configuration via an HTTP request to the admin/admin.shtml containing a leading // double slash...

CVE-2002-0599

Blahz-DNS 0.2 and earlier allows remote attackers to bypass authentication and modify configuration by directly requesting CGI programs such as dostuff.php instead of going through the login screen...

CVE-2002-0599

Blahz-DNS 0.2 and earlier is affected by CVE-2002-0599. The vulnerability allows remote attackers to bypass authentication and modify DNS configuration by directly requesting CGI programs (e.g., dostuff.php) instead of using the login screen. Affected component is the authentication/config flow; ...

CVE-2002-0813

Heap-based buffer overflow in the TFTP server capability in Cisco IOS 11.1, 11.2, and 11.3 allows remote attackers to cause a denial of service reset or modify configuration via a long filename...

CVE-2002-1553

Cisco ONS15454 and ONS15327 running ONS before 3.4 allows remote attackers to modify the system configuration and delete files by establishing an FTP connection to the TCC, TCC+ or XTC using a username and password that does not exist...