213 matches found
tomcat6 Information disclosure in authentication classes
Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6.0.18, when FORM authentication is used, allows remote attackers to enumerate valid usernames via requests to /jsecuritycheck with malformed URL encoding of passwords, related to improper error checking in the 1...
4 5 You can obtain the Webshell program-vulnerability warning-the black bar safety net
1: Go to GoogLe,search some keywords,edit. asp? Korean broiler chickens is more,the majority of MSSQL database! 2,to Google ,site:cq. cn inurl:asp 3, The use of mining chicken and an ASP Trojan. The file name is login. asp ...... The path set is/manage/ The key word is went. asp 'Or'='or'to login...
[DRUPAL-SA-2007-018] Drupal 4.7.7 and 5.2 fix multiple cross site scripting vulnerabilities
---------------------------------------------------------------------------- Drupal security advisory DRUPAL-SA-2007-018 ---------------------------------------------------------------------------- Project: Drupal core Version: 4.7.x, 5.x Date: 2007-July-26 Security risk: Moderately critical...
CVE-2002-1260
The Java Database Connectivity JDBC APIs in Microsoft Virtual Machine VM 5.0.3805 and earlier allow remote attackers to bypass security checks and access database contents via an untrusted Java applet...
CVE-2002-0866
CVE-2002-0866 affects Microsoft's Java VM JDBC classes, where JDBC functionality could be misused by a Java applet to load and execute a DLL via com.ms.jdbc.odbc.JdbcOdbc, with the DLL name terminated by a null string. The issue enables remote execution of DLLs from the client system, as describe...
CVE-2002-0866
Java Database Connectivity JDBC classes in Microsoft Virtual Machine VM up to and including 5.0.3805 allow remote attackers to load and execute DLLs dynamic link libraries via a Java applet that calls the constructor for com.ms.jdbc.odbc.JdbcOdbc with the desired DLL terminated by a null string,...
[VulnWatch] Macromedia Dreamweaver Remote Database Scripts (#NISR05042004B)
NGSSoftware Insight Security Research Advisory Name: Macromedia Dreamweaver Remote Database Scripts Systems Affected: IIS/Dreamweaver MX and UltraDev 4 Severity: Critical Vendor URL: http://www.macromedia.com/ Author: David Litchfield [email protected] Date Vendor Notified: 10th March 2004 Da...
CVE-2002-1260
The Java Database Connectivity JDBC APIs in Microsoft Virtual Machine VM 5.0.3805 and earlier allow remote attackers to bypass security checks and access database contents via an untrusted Java applet...
CVE-2002-0866
Java Database Connectivity JDBC classes in Microsoft Virtual Machine VM up to and including 5.0.3805 allow remote attackers to load and execute DLLs dynamic link libraries via a Java applet that calls the constructor for com.ms.jdbc.odbc.JdbcOdbc with the desired DLL terminated by a null string,...
Microsoft Java implementation JDBC functions do not properly validate parameters
Overview The Java Database Connectivity JDBC classes of Microsoft's Java virtual machine VM contain functions that do not properly validate parameters. A malicious Java applet can exploit this vulnerability to crash programs on the client system. Description Microsoft's Java VM is installed on...
Update Rollup 2 for System Center 2016 Operations Manager
None None...
Microsoft Office Access Runtime and Data Connectivity 2007 Service Pack 3 (SP3)
Service Pack 3 provides the latest updates to Microsoft Office Access 2007 Runtime and 2007 Microsoft Office System Driver: Database Connectivity Components...
Security update 1970-01-01
...