1287 matches found
CVE-2000-0923
authenticate.cgi CGI program in Aplio PRO allows remote attackers to execute arbitrary commands via shell metacharacters in the password parameter...
CVE-2000-1131
Bill Kendrick web site guestbook GBook allows remote attackers to execute arbitrary commands via shell metacharacters in the MAILTO form variable...
CVE-2000-0912
MultiHTML CGI script allows remote attackers to read arbitrary files and possibly execute arbitrary commands by specifying the file name to the "multi" parameter...
CVE-2000-0969
CVE-2000-0969 affects the Half-Life dedicated server (build 3104 and earlier). The issue is a format-string vulnerability in the changelevel command that can allow remote code execution via the system console or rcon. The vulnerability arises from unsafely handling format strings in the server, e...
CVE-2000-1121
Buffer overflow in enq command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long -M argument...
CVE-2000-1120
Buffer overflow in digest command in IBM AIX 4.3.x and earlier allows local users to execute arbitrary commands...
CVE-2000-1095
modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters...
CVE-2000-0923
authenticate.cgi CGI program in Aplio PRO allows remote attackers to execute arbitrary commands via shell metacharacters in the password parameter...
CVE-2000-0985
Buffer overflow in All-Mail 1.1 allows remote attackers to execute arbitrary commands via a long "MAIL FROM" or "RCPT TO" command...
Дырка в ezmlm-cgi
Пользователь может задать собственный конфигурационный файл и выполнить любые команды...
CVE-2000-1015
The default configuration of Slashcode before version 2.0 Alpha has a default administrative password, which allows remote attackers to gain Slashcode privileges and possibly execute arbitrary commands...
UtilMind Mail List 1.7 - Users Can Execute Commands
Exploit for cgi platform in category web applications =================================================== UtilMind Mail List 1.7 - Users Can Execute Commands =================================================== !/usr/bin/perl -w Mailing List & News Version 1.7 / PoC Exploit. UtilMind Solutions /...
MS ActiveMovieControl Object downloads arbitrary files
Overview Description This vulnerability is actually the same as the Cache Bypass issue described in VU38950. This document is provided for people looking for information based on publicly available exploits using the Active Movie control. The flaw is not in the Active Movie control per se, but...
CVE-2000-0340
Buffer overflow in Gnomelib in SuSE Linux 6.3 allows local users to execute arbitrary commands via the DISPLAY environmental variable...
Проблемы с HTT-фолдерами в Windows
Недобросовестный оператор Web-узла может заставить пользователя подключиться к своему ресурсу по UNC-имени, при этом если допускается вид папок как Web0-фолдеров, то будет выполнены команды из Folder.htt, в т.ч. могут быть запущены исполняемые файлы...
CVE-2000-0520
Buffer overflow in restore program 0.4b17 and earlier in dump package allows local users to execute arbitrary commands via a long tape name...
CVE-2000-0432
The calender.pl and the calendaradmin.pl calendar scripts by Matt Kruse allow remote attackers to execute arbitrary commands via shell metacharacters...
CVE-2000-0437
Buffer overflow in the CyberPatrol daemon "cyberdaemon" used in gauntlet and WebShield allows remote attackers to cause a denial of service or execute arbitrary commands...
CVE-2000-0635
The viewpage.html sample page in the MiniVend shopping cart program allows remote attackers to execute arbitrary commands via shell metacharacters...
CVE-2000-0423
Buffer overflow in Netwin DNEWSWEB CGI program allows remote attackers to execute arbitrary commands via long parameters such as group, cmd, and utag...