1464 matches found
Sonium Enterprise Adressbook <= 0.2 (folder) Include Vulnerability
No description provided by source. +-------------------------------------------------------------------- + + Sonium Enterprise Adressbook Version 0.2 folder RFI + + Original advisory: + http://www.bb-pcsecurity.de/Websecurity/342/org/SoniumEnterpriseAdressbookVersion0.2folderRFI.htm +...
Linux Kernel Samba 2.2.8 Share Local Privilege Elevation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9619/info A local privilege escalation vulnerability has been reported to affect the 2.6 Linux kernel. The issue appears to exist due to a lack of sufficient sanity checks performed when executing a file that is hosted on...
Microsoft Outlook Express 6.0 MHTML Forced File Execution Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/9105/info A vulnerability has been discovered in Microsoft Outlook Express when handling MHTML file and res URIs that could lead to an unexpected file being downloaded and executed. The problem occurs due to the component...
Fantastic News <= 2.1.4 - Multiple Remote File Include Vulnerabilities
No description provided by source. +------------------------------------------------------------------------------------------- + Fantastic News == 2.1.4 CONFIGscriptpath Multiple Remote File Include Vulnerabilities...
Office Viewer ActiveX Control 3.0.1 - Remote File Execution Exploit
No description provided by source. =======================================================================================br Author: Houssamix br =======================================================================================br Office Viewer ActiveX Control v 3.0.1 Remote File execution...
PowerPoint Viewer OCX 3.1 - Remote File Execution Exploit
No description provided by source. PowerPoint Viewer OCX v3.1 Remote File Execution Exploit Founded By : Cyber-Zone E-mail : [email protected] Home : WwW.Exploiter5.CoM GreetZ : Houssamix , Hussin X , JiKo , StaCk , str0ke , The5p3ctrum HTML BODY object id=Cyb...
Word Viewer OCX 3.2 - Remote File Execution exploit
No description provided by source. HTML ---------------------------------------------------------- br Word viewer OCX V 3.2 Remote File execution exploitbr ---------------------------------------------------------- br -----------------------------------br By Mountassif Moad a.k.a Stack...
LineWeb 1.0.5 Multiple Remote Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/37613/info LineWeb is prone to multiple remote vulnerabilities: - Multiple local file-include vulnerabilities - An SQL-injection vulnerability - A security-bypass vulnerability An attacker can exploit these issues to...
Outlook ATTACH_BY_REF_RESOLVE File Execution
No description provided by source. $Id: ms10045outlookrefresolve.rb 10389 2010-09-20 04:38:13Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...
Jinzora <= 2.7 (include_path) Multiple Remote File Include Vulnerabilities
No description provided by source. +------------------------------------------------------------------------------------------- + Jinzora = 2.7 includepath Multiple Remote File Include Vulnerabilities +------------------------------------------------------------------------------------------- +...
MTCMS <= 2.0 (admin/admin_settings.php) Remote File Include Exploit
No description provided by source. !/usr/bin/perl +------------------------------------------------------------------------------------------- + MTCMS = 2.0 admin/adminsettings.php Remote File Include Exploit...
Allaire ColdFusion Server <= 4.0 - Remote File Display, Deletion, Upload and Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/115/info To display and delete any file on the system use an URL of the following form: http://www.victim.test/cfdocs/expeval/ExprCalc.cfm?OpenFilePath=C:\the\target\file To upload files to the sever first find out the...
Azucar CMS <= 1.3 (admin/index_sitios.php) File Inclusion Vulnerability
No description provided by source. +------------------------------------------------------------------------------------------- + Azucar CMS = 1.3 VIEW Remote File Include Vulnerability +------------------------------------------------------------------------------------------- + Affected Softwar...
Foing 0.x Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18392/info Foing is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remo...
Excel Viewer OCX 3.2 - Remote File Execution Exploit
No description provided by source. HTML ---------------------------------------------------------- br Excel Viewer OCX 3.2 Remote File execution exploit br ---------------------------------------------------------- br -----------------------------------br By Mountassif Moad a.k.a Stack...
Microsoft Internet Explorer 5.0.1/6.0 Content-Disposition Handling File Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4752/info An issue exists in the way Microsoft Internet Explorer handles conflicting information in some HTTP headers used to describe non-HTML content. A malicious web server may provide content with misleading values in...
TSEP <= 0.942 (copyright.php) Remote Inclusion Vulnerability
No description provided by source. +-------------------------------------------------------------------- + + TSEP 0.9.4.2 + +-------------------------------------------------------------------- + + Affected Software .: TSEP 0.9.4.2 + Venedor ...........: http://www.tsep.info/ + Class ...............
CVE-2014-2720
IZArc 4.1.8 is vulnerable due to a mismatch between ZIP Central Directory data (file name) and the Local File Header used to launch the file. This allows user‑assisted remote attackers to perform file‑extension spoofing that can lead to unintended code execution, demonstrated when a .jpg in the C...
Executable File With Non-Executable File Extension Arbitrary File Execution
Certain malicious executable files can be hidden using arbitrary filename extensions. A remote attacker could exploit this vulnerability to entice unsuspecting users to execute arbitrary files...
Internet Explorer Mouse Drag Hijack Arbitrary File Execution - Ver2 (CVE-2004-0841)
An arbitrary file execution vulnerability has been reported in Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute and install arbitrary programs on the affected system...