Cisco Personal Assistant User Password Bypass Vulnerability

...

CVS PServer CVSROOT Passwd File Arbitrary Code Execution

According to its version number, the remote CVS server has an arbitrary code execution vulnerability. Any user with the ability to write the CVSROOT/passwd file could execute arbitrary code as root. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid11970; scriptversion...

Microsoft Internet Explorer 56 Mozilla 1.2.1 - URI Display Obfuscation (1)

Microsoft Internet Explorer 56 Mozilla 1.2.1 - URI Display Obfuscation 1 source: https://www.securityfocus.com/bid/9182/info A weakness has been reported in multiple browsers that may allow attackers to obfuscate the URI for a visited page. The problem is said to occur when a URI designed to pass...

Yahoo Messenger Flaw allows injection of JavaScript into IM Windows

Title: Yahoo Messenger Flaw allows injection of JavaScript into IM Windows Author: Chet Simpson [email protected] Date: December 5th, 2003 Host Platforms tested: WindowsME and WindowsXP sp1a Target Applications tested: Yahoo Messenger 5.5 Build 1249 Yahoo Messenger 5.6 Build 1355 Target...

pound remotely exploitable vulnerability

An unknown remotely exploitable vulnerability was disclosed. Robert Segall writes: a security vulnerability was brought to my attention many thanks to Akira Higuchi. Everyone running any previous version should upgrade to 1.6 immediately - the vulnerability may allow a remote exploit. No exploits...

Applied Watch Command Center 1.0 - Authentication Bypass (2)

Applied Watch Command Center 1.0 - Authentication Bypass 2 // source: https://www.securityfocus.com/bid/9124/info A vulnerability has been identified in the system that may allow an attacker to bypass authentication to add attacker supplied IDS alerts and new user accounts in the console...

TerminatorX 3.8 - Multiple Command-Line and Environment Buffer Overrun Vulnerabilities (2)

TerminatorX 3.8 - Multiple Command-Line and Environment Buffer Overrun Vulnerabilities 2 // source: https://www.securityfocus.com/bid/8993/info It has been reported that TerminatorX may be prone to multiple vulnerabilities when handling command-line and environment variable data. As a result, an...

IBM DB2 - 'db2govd' Format String Arbitrary Code Execution

source: https://www.securityfocus.com/bid/8989/info Multiple command-line parameter format string vulnerabilities have been discovered in various IBM DB2 binaries. Specifically, format-based functions are implemented erroneously within the db2govd, db2start, and db2stop programs. These binaries a...

CVE-2003-1184

Multiple cross-site scripting XSS vulnerabilities in ThWboard Beta 2.8 and 2.81 allow remote attackers to inject arbitrary web script or HTML via 1 time in board.php, 2 the profile Homepage-Feld, 3 pictures, and 4 other "Diverse XSS Bugs."...

CVE-2003-0813

A multi-threaded race condition in the Windows RPC DCOM functionality with the MS03-039 patch installed allows remote attackers to cause a denial of service crash or reboot by causing two threads to process the same RPC request, which causes one thread to use memory after it has been freed, a...

EMML, EMGB : Include() hole

Informations : °°°°°°°°°°°°° Language : PHP ------------------------------------------------- Produit : EMML EternalMart Mailing List Manager Version : 1.32 ------------------------------------------------- Produit : EMGB EternalMart Guestbook Version : 1.1...

CGI bugs

No description provided...

CGI bugs

No description provided...

IBM DB2 - Shared Library Injection

IBM DB2 - Shared Library Injection source: https://www.securityfocus.com/bid/8346/info IBM DB2 ships with a number of shared libraries, stored in a directory owned by the user and group 'bin'. As setuid root utilities are linked to these libraries, their ownership by a user and group of a lower...

UMN gopherd[2.x.x/3.x.x]: ftp gateway, and GSisText() buffer overflow exploits.

bordom/fun audit time... been awhile since i did an audit of UMNUniversity of Minnesota gopherd+ daemon. figured i would check out the newer v3.0.x series, which has cleaned up the past security issues... while the old issues are resolved, still a few leftovers. two exploits follow... original...

[SECURITY] [DSA-336-1] New Linux 2.2.20 packages and i386 kernel images fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 336-1 [email protected] http://www.debian.org/security/ Matt Zimmerman June 29th, 2003 http://www.debian.org/security/faq -...

security flaw

Apache 1.3 before 1.3.25 and Apache 2.0 before version 2.0.46 does not filter terminal escape sequences from its access logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences, a different vulnerabilit...

Hosting Controller Multiple Script Arbitrary Directory Browsing

The Hosting Controller application resides on this server. This version is vulnerable to multiple remote exploits. At attacker may make use of this vulnerability and use it to gain access to confidential data and/or escalate their privileges on the Web server. %NASLMINLEVEL 70300 This script was...

[EXPL] Exploit Code Released for errpt

Return-Path: [email protected] Received: from adm.sci-nnov.ru adm.sci-nnov.ru 195.122.226.2 by pent.sci-nnov.ru 8.12.8p1/8.12.8 with ESMTP id h5BLXUjP039124 for [email protected]; Thu, 12 Jun 2003 01:33:30 +0400 MSD envelope-from [email protected]...

Avirt Multiple Product HTTP Proxy Overflow (deprecated)

This plugin has been deprecated as it resulted in false positives without reliably detecting the vulnerability on the intended target. Avirt software is not currently being distributed or maintained. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2020/03/30. include"compat.inc";...