113 matches found
Dokeos LMS <= 1.8.5 (whoisonline.php) PHP Code Injection Exploit
Exploit for unknown platform in category web applications ================================================================ Dokeos LMS = 1.8.5 whoisonline.php PHP Code Injection Exploit ================================================================ ?php /...
Ubuntu Update for postgresql-8.1, postgresql-8.2 vulnerability USN-454-1
Ubuntu Update for Linux kernel vulnerabilities USN-454-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4541.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for postgresql-8.1, postgresql-8.2 vulnerability USN-454-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks...
DEBIAN-CVE-2008-4096
libraries/databaseinterface.lib.php in phpMyAdmin before 2.11.9.1 allows remote authenticated users to execute arbitrary code via a request to serverdatabases.php with a sortby parameter containing PHP sequences, which are processed by createfunction...
Ubuntu 5.10 : mysql-dfsg-4.1 vulnerability (USN-180-2)
USN-180-1 fixed a vulnerability in the mysql-server package which ships version 4.0. Version 4.1 is vulnerable against the same flaw. Please note that this package is not officially supported in Ubuntu 5.10. Origial advisory : 'AppSecInc Team SHATTER discovered a buffer overflow in the 'CREATE...
Ubuntu 4.10 / 5.04 : mysql-dfsg vulnerability (USN-180-1)
AppSecInc Team SHATTER discovered a buffer overflow in the 'CREATE FUNCTION' statement. By specifying a specially crafted long function name, a local or remote attacker with function creation privileges could crash the server or execute arbitrary code with server privileges. However, the right to...
USN-180-2: MySQL 4.1 vulnerability
USN-180-1 fixed a vulnerability in the mysql-server package which ships version 4.0. Version 4.1 is vulnerable against the same flaw. Please note that this package is not officially supported in Ubuntu 5.10. Origial advisory: "AppSecInc Team SHATTER discovered a buffer overflow in the "CREATE...
xarayaDOS.txt
Xaraya = 1.0.0 RC4 D.O.S / file corruption software: site: http://www.xaraya.com description: "Xaraya 1.0 Core is an Open Source web application framework written in PHP" vulnerable code in create function in xarMLSXML2PHPBackend.php: i you can create an empty dir, in some cases this leads to...
Xaraya <= 1.0.0 RC4 D.O.S / file corruption
Xaraya = 1.0.0 RC4 D.O.S / file corruption software: site: http://www.xaraya.com description: "Xaraya 1.0 Core is an Open Source web application framework written in PHP" vulnerable code in create function in xarMLSXML2PHPBackend.php: i you can create an empty dir, in some cases this leads to...
USN-180-1: MySQL vulnerability
AppSecInc Team SHATTER discovered a buffer overflow in the "CREATE FUNCTION" statement. By specifying a specially crafted long function name, a local or remote attacker with function creation privileges could crash the server or execute arbitrary code with server privileges. However, the right to...
FreeBSD : mysql-server -- multiple remote vulnerabilities (619ef337-949a-11d9-b813-00d05964249f)
SecurityFocus reports : MySQL is reported prone to an insecure temporary file creation vulnerability. Reports indicate that an attacker that has 'CREATE TEMPORARY TABLE' privileges on an affected installation may leverage this vulnerability to corrupt files with the privileges of the MySQL proces...
security flaw
MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls, as demonstrated by using strcat, onexit, and exit...
exp2.php.txt
? / Mysql CREATE FUNCTION func table arbitrary library injection Author: Stefano Di Paola Vulnerable: Mysql = 4.0.23, 4.1.10 Type of Vulnerability: Local/Remote Privileges Escalation - input validation Tested On : Mandrake 10.1 /Debian Sarge Vendor Status: Notified on March 2005 Copyright 2005...
[VulnWatch] Mysql CREATE FUNCTION libc arbitrary code execution.
Mysql CREATE FUNCTION libc arbitrary code execution. Author: Stefano Di Paola Vulnerable: Mysql = 4.0.23, 4.1.10 Type of Vulnerability: Local/Remote - input validation Tested On : Mandrake 10.1 /Debian Sarge Vendor Status: Notified on March 2005 -- Description If an authenticated user has INSERT...