Lucene search
K

1295 matches found

Cvelist
Cvelist
added 2007/06/07 10:0 p.m.23 views

CVE-2007-3124

Buffer overflow in backup/src/vmsbackup.c aka the backup utility in FreeVMS before 0.3.6 might allow local users to gain privileges via a long string in response to an "extract ny" prompt...

6.8AI score0.00333EPSS
Exploits0References4
OSV
OSV
added 2007/04/16 9:19 p.m.1 views

DEBIAN-CVE-2007-1997

Integer signedness error in the 1 cabunstore and 2 cabextract functions in libclamav/cab.c in Clam AntiVirus ClamAV before 0.90.2 allow remote attackers to execute arbitrary code via a crafted CHM file that contains a negative integer, which passes a signed comparison and leads to a stack-based...

7.5CVSS9.5AI score0.05412EPSS
Exploits0References1
securityvulns
securityvulns
added 2007/03/09 12:0 a.m.41 views

[Full-disclosure] PHP import_request_variables() vs extract()

Please note that also extract will override any variable exluded $GLOBALS but the main difference is that on http://it2.php.net/extract you are advised to do not use "extract against untrusted data, like user-input $GET, ...." quote if you want to run old code that relies on registerglobals...

0.8AI score
Exploits0
CVE
CVE
added 2007/02/16 1:0 a.m.54 views

CVE-2007-0975

CVE-2007-0975 affects Ian Bezanson Apache Stats prior to 0.0.3 beta. The vulnerability is a variable extraction issue: the extract function on the _REQUEST superglobal can overwrite critical variables. The impact is stated as unknown in the source material. CVSS 2.0 base score is 5.0 (Medium). No...

5CVSS6.5AI score0.01165EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2007/02/14 11:28 a.m.16 views

Design/Logic Flaw

Variable extract vulnerability in Apache Stats before 0.0.3beta allows attackers to modify arbitrary variables and conduct attacks via unknown vectors involving the use of PHP's extract function...

7.5CVSS7AI score0.01126EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2007/02/14 11:0 a.m.51 views

CVE-2007-0930

CVE-2007-0930 describes a vulnerability in Apache Stats prior to 0.0.3beta where PHP’s extract usage enables attackers to modify arbitrary variables. The underlying issue is a variable extraction flaw that could enable attacks via unspecified vectors. The affected software is Apache Stats (PHP-ba...

7.5CVSS6.5AI score0.01126EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2007/02/14 11:0 a.m.24 views

CVE-2007-0930

Variable extract vulnerability in Apache Stats before 0.0.3beta allows attackers to modify arbitrary variables and conduct attacks via unknown vectors involving the use of PHP's extract function...

6.5AI score0.01126EPSS
Exploits0References3
NVD
NVD
added 2007/02/01 1:28 a.m.17 views

CVE-2007-0649

Variable overwrite vulnerability in interface/globals.php in OpenEMR 2.8.2 and earlier allows remote attackers to overwrite arbitrary program variables and conduct other unauthorized activities, such as conduct a remote file inclusion attacks via the srcdir parameter in custom/importxml.php or b...

4.3CVSS5.8AI score0.06172EPSS
Exploits0References13
Prion
Prion
added 2007/01/30 6:28 p.m.14 views

Buffer overflow

Variable overwrite vulnerability in common/config.php in Aztek Forum 4.00 allows remote attackers to overwrite arbitrary program variables and conduct other unauthorized activities, such as copying arbitrary files using index/commonactions.php, via vectors associated with extract operations on th...

7.5CVSS7.2AI score0.01501EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2007/01/30 6:28 p.m.17 views

CVE-2007-0599

Variable overwrite vulnerability in common/config.php in Aztek Forum 4.00 allows remote attackers to overwrite arbitrary program variables and conduct other unauthorized activities, such as copying arbitrary files using index/commonactions.php, via vectors associated with extract operations on th...

7.5CVSS6.7AI score0.01501EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2007/01/24 12:0 a.m.7 views

PT-2007-1934

Name of the Vulnerable Software and Affected Versions RubyGems versions prior to 0.9.1 Description The issue concerns the extract files function in installer.rb, which does not check whether files exist before overwriting them. This allows user-assisted remote attackers to overwrite arbitrary...

9.3CVSS7.7AI score0.04826EPSS
Exploits0References12
NVD
NVD
added 2006/12/20 11:28 p.m.24 views

CVE-2006-6661

Variable overwrite vulnerability in blog.php in PHP-Update 2.7 and earlier allows remote attackers to overwrite arbitrary program variables and execute arbitrary PHP code via multiple vectors that use the extract function, as demonstrated by the 1 f, 2 newmessage, 3 newusername, 4 adminuser, and ...

7.5CVSS7.4AI score0.0628EPSS
Exploits0References3
Cvelist
Cvelist
added 2006/12/20 11:0 p.m.34 views

CVE-2006-6661

Variable overwrite vulnerability in blog.php in PHP-Update 2.7 and earlier allows remote attackers to overwrite arbitrary program variables and execute arbitrary PHP code via multiple vectors that use the extract function, as demonstrated by the 1 f, 2 newmessage, 3 newusername, 4 adminuser, and ...

7.4AI score0.0628EPSS
Exploits0References3
CVE
CVE
added 2006/12/20 11:0 p.m.49 views

CVE-2006-6661

This CVE affects PHP-Update (blog.php)

7.5CVSS7.4AI score0.0628EPSS
Exploits0References3Affected Software1
exploitpack
exploitpack
added 2006/12/19 12:0 a.m.18 views

PHP-Update 2.7 - extract() Authentication Bypass Shell Injection

PHP-Update 2.7 - extract Authentication Bypass Shell Injection 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont+...

0.9AI score
Exploits0
Exploit DB
Exploit DB
added 2006/12/19 12:0 a.m.63 views

PHP-Update 2.7 - 'extract()' Authentication Bypass / Shell Injection

126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15...

7.4AI score
Exploits0
0day.today
0day.today
added 2006/12/19 12:0 a.m.28 views

PHP-Update <= 2.7 extract() Auth Bypass / Shell Inject Exploit

Exploit for unknown platform in category web applications ============================================================== PHP-Update 126 $result.=" ."; else $result...

7.1AI score
Exploits0
NVD
NVD
added 2006/12/01 1:28 a.m.12 views

CVE-2006-6213

index.php in PEGames uses the extract function to overwrite critical variables, which allows remote attackers to conduct PHP remote file inclusion attacks via the absurl parameter, which is later extracted to overwrite a previously uncontrolled value...

7.5CVSS6.8AI score0.02562EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2006/11/24 6:7 p.m.33 views

CVE-2006-6097

GNU tar 1.16 and 1.15.1, and possibly other versions, allows user-assisted attackers to overwrite arbitrary files via a tar file that contains a GNUTYPENAMES record with a symbolic link, which is not properly handled by the extractarchive function in extract.c and extractmangle function in...

4CVSS7.2AI score0.11084EPSS
Exploits1References2
OSV
OSV
added 2006/11/24 6:7 p.m.11 views

CVE-2006-6097

GNU tar 1.16 and 1.15.1, and possibly other versions, allows user-assisted attackers to overwrite arbitrary files via a tar file that contains a GNUTYPENAMES record with a symbolic link, which is not properly handled by the extractarchive function in extract.c and extractmangle function in...

6.3AI score
Exploits0References43
Rows per page
Query Builder