Testlink TestManagement and Execution System 1.8.5 - Multiple Directory Traversal Vulnerabilites

No description provided by source. 1.Title :Multiple directory Traversal Vulnerabilites in Testlink TestManagement and Execution System. Discovered by: Prashant Khandelwal [email protected]:[email protected] Submitted :Jan-15-2010 Bugtraq id :...

Vivotek IP Cameras Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com Vivotek IP Cameras Multiple Vulnerabilities 1. Advisory Information Title: Vivotek IP Cameras Multiple Vulnerabilities Advisory ID: CORE-2013-0301 Advisory URL:...

Novell Client 3.0/3.0.1 - Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/700/info Novell client versions 3.0 and 3.01 for Windows platforms are vulnerable to a remotely exploitable vulnerability which could cause a denial of service. The client opens a listening tcp socket on port 427, to whic...

Palo Alto Network Vulnerability - Cross-Site Scripting (XSS)

No description provided by source. Palo Alto Network Vulnerability - Cross-Site Scripting XSS ------------------------------ Class: Cross-Site Scripting XSS Vulnerability CVE: CVE-2010-0475 Remote: Yes Local: Yes Published: May 11, 2010 08:30AM Timeline:Submission to MITRE: 1/18/2010 Vendor...

Mandriva Linux Mandrake 7.0 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1265/info The linux cdrecorder binary is vulnerable to a locally exploitable buffer overflow attack. When installed in a Mandrake 7.0 linux distribution, it is by default setgid cdburner which is a group, gid: 80, that is...

Inso DynaWeb httpd 3.1/4.0.2/4.1 Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5384/info Inso DynaWeb webserver, dwhttpd, is used as a subcomponent in products such as Sun's AnswerBook2, which is shipped as part of the Solaris operating environment. The dwhttpd webserver is prone to a remotely...

Omnicron OmniHTTPD 1.1/2.4 Pro Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/739/info There is a remotely exploitable buffer overflow vulnerability in the CGI program imagemap, which is distributed with Omnicron's OmniHTTPD. During operations made on arguments passed to the program, a lack of boun...

Oracle Document Capture Insecure READ Method

No description provided by source. Source: http://packetstormsecurity.org/files/view/97872/DSECRG-11-007.txt Digital Security Research Group DSecRG Advisory DSECRG-11-007 Internal DSECRG-00117 Application: Oracle Document Capture Versions Affected: 10.1350.0005 Vendor URL:...

Solaris 2.5/2.5.1/2.6/7.0 sadmind Buffer Overflow Vulnerability (4)

source: http://www.securityfocus.com/bid/866/info Certain versions of Solaris ship with a version of sadmind which is vulnerable to a remotely exploitable buffer overflow attack. sadmind is the daemon used by Solstice AdminSuite applications to perform distributed system administration operations...

phpwcms <= 1.5.4.6 "preg_replace" - Multiple Vulnerabilities

No description provided by source. ?php / phpwcms = v1.5.4.6 pregreplace remote code execution exploit vendor: http://www.phpwcms.de/ Download: github.com/slackero/phpwcms by: aeon Well it appears there are multiple remote code execution bugs that exists in phpwcms for quite some time now. Here I...

Mah-Jong 1.4/1.6 Server Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8558/info A remote denial of service vulnerability has been reported to affect the mah-jong game server. The issue has been reported to be exploitable so that a remote attacker may trigger a tight loop in the affected...

Muhammad A. Muquit wwwcount 2.3 Count.cgi Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/128/info Wwwcount count.cgi is a very popular CGI program used to track website usage. In particular, it enumerates the number of hits on given webpages and increments them on a 'counter'. In October of 1997 two remotely...

Xpient Cash Drawer Operation Vulnerability

No description provided by source. Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Xpient Cash Drawer Operation Vulnerability 1. Advisory Information Title: Xpient Cash Drawer Operation Vulnerability Advisory ID: CORE-2013-0517 Advisory URL:...

Openfire Server <= 3.6.0a (Auth Bypass/SQL/XSS) Multiple Vulnerabilities

No description provided by source. Advisory: Openfire Server Multiple Vulnerabilities Advisory ID: AKADV2008-001 Release Date: 2008/11/07 Revision: 1.0 Last Modified: 2008/11/07 Date Reported: 2008/05/17 Author: Andreas Kurtz mail at andreas-kurtz.de Affected Software: Openfire Server = 3.6.0a...

IBM AIX 4.3.x/5.1 ERRPT Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5885/info The IBM AIX errpt command is prone to a locally exploitable buffer overflow condition. It is possible to exploit this condition to execute arbitrary attacker-supplied instructions with root privileges...

NetSaro Enterprise Messenger 2.0 - Multiple Vulnerabilities

No description provided by source. =================================================== Secur-I Research Group Security Advisory SV-2011-004 =================================================== Title: NetSaro Enterprise Messenger v2.0 Multiple Vulnerabilities Product: Enterprise Messenger Server...

Cloupia End-to-end FlexPod Management Directory Traversal

No description provided by source. Cloupia End-to-end FlexPod Management - Directory Traversal Vulnerability Advisory Information Advisory ID: KUSTODIAN-2011-011 Date published: Jan 13, 2011 Vulnerability Information Class: Directory Traversal Remotely Exploitable: Yes Locally Exploitable: Yes...

HP Tru64/OSF1 DXTerm Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5746/info The HP Tru64/OSF1 dxterm utility is prone to a locally exploitable buffer overflow condition. This issue is due to insufficient checking of command line input supplied via the -xrm parameter. This parameter serv...

Front Accounting 2.3.4 CSRF Vulnerability

No description provided by source. Software................Front Accounting 2.3.4 Vulnerability...........Cross-site Request Forgery Threat Level............Low 1/5 Download................http://frontaccounting.com/wb3/ Discovery Date..........4/27/2011 Tested On...............Windows Vista +...

LBL traceroute 1.4 a5 Heap Corruption Vulnerability (3)

No description provided by source. source: http://www.securityfocus.com/bid/1739/info Traceroute is a well-known network diagnostic tool used for analyzing the path on a network between two hosts. On unix systems, traceroute is typically installed setuid root because of its use of raw sockets...