CVE-2010-0396

Directory traversal vulnerability in the dpkg-source component in dpkg before 1.14.29 allows remote attackers to modify arbitrary files via a crafted Debian source archive...

CVE-2009-4488

Varnish 2.0.6 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal emulator. NOTE: the vendo...

Tomcat 6.0.18 非授权读取和修改文件

No description provided by source...

Fedora 10 : php-pear-Mail-1.1.14-5.fc10 (2009-12439)

Fix CVE-2009-4023, CVE-2009-4111 PEAR's Mail class did not properly escape content of mail header fields, when using the sendmail backend. A remote attacker could send an email message, with specially crafted headers to local user, leading to disclosure of content and potentially, to modification...

PHP168后台查看/修改任意文件漏洞

No description provided by source...

DEBIAN-CVE-2009-3289

The gfilecopy function in glib 2.0 sets the permissions of a target file to the permissions of a symbolic link 777, which allows user-assisted local users to modify files of other users, as demonstrated by using Nautilus to modify the permissions of the user home directory...

CVE-2009-2813

Samba 3.4 before 3.4.2, 3.3 before 3.3.8, 3.2 before 3.2.15, and 3.0.12 through 3.0.36, as used in the SMB subsystem in Apple Mac OS X 10.5.8 when Windows File Sharing is enabled, Fedora 11, and other operating systems, does not properly handle errors in resolving pathnames, which allows remote...

openSUSE Security Update : java-1_5_0-sun (java-1_5_0-sun-1162)

The Sun Java JRE /JDK 5 was updated to Update 20 fixing various security issues. CVE-2009-2670: The audio system in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by 1 untrusted apple...

CVE-2009-2334

wp-admin/admin.php in WordPress and WordPress MU before 2.8.1 does not require administrative authentication to access the configuration of a plugin, which allows remote attackers to specify a configuration file in the page parameter to obtain sensitive information or modify this file, as...

DEBIAN-CVE-2009-2334

wp-admin/admin.php in WordPress and WordPress MU before 2.8.1 does not require administrative authentication to access the configuration of a plugin, which allows remote attackers to specify a configuration file in the page parameter to obtain sensitive information or modify this file, as...

CVE-2009-2296

CVE-2009-2296 affects Sun Solaris 10 and OpenSolaris prior to snv_119 where the NFSv4 server kernel module mishandles the nfs_portmon setting. This allows remote attackers to access shares and read, create, and modify arbitrary files via unspecified vectors. Remediation is through Solaris patches...

Code injection

Simple Linux Utility for Resource Management SLURM 1.2 and 1.3 before 1.3.14 does not properly set supplementary groups before invoking 1 sbcast from the slurmd daemon or 2 strigger from the slurmctld daemon, which might allow local SLURM users to modify files and gain privileges...

httpdx <= 0.8 FTP Server Delete/Get/Create Directories/Files Exploit

Exploit for windows platform in category remote exploits ==================================================================== httpdx DELE ../../boot.ini You can get file boot.ini = RETR ../../boot.ini You can creat Directory = MKD ../../poc You can delet Directory = RMD ../../WINDOWS Author:...

Directory traversal vulnerability in multiple Cisco Systems products

Overview Multiple products provided by Cisco Systems contain a directory traversal vulnerablility. Multiple Cisco Systems products are vulnerable to directory traversal due to an issue in CiscoWorks Common Services. Jun Okada of NTT DATA SECURITY CORPORATION reported this vulnerability to IPA...

CVE-2008-6755

ZoneMinder 1.23.3 on Fedora 10 sets the ownership of /etc/zm.conf to the apache user account, and sets the permissions to 0600, which makes it easier for remote attackers to modify this file by accessing it through a 1 PHP or 2 CGI script...

CVE-2008-6755

ZoneMinder 1.23.3 on Fedora 10 sets the ownership of /etc/zm.conf to the apache user account, and sets the permissions to 0600, which makes it easier for remote attackers to modify this file by accessing it through a 1 PHP or 2 CGI script...

Design/Logic Flaw

The NFS daemon aka nfsd in Sun Solaris 10 and OpenSolaris before snv106, when NFSv3 is used, does not properly implement combinations of security modes, which allows remote attackers to bypass intended access restrictions and read or modify files, as demonstrated by a combination of the sec=sys a...

Design/Logic Flaw

The NFS server in Sun Solaris 10, and OpenSolaris before snv111, does not properly implement the AUTHNONE aka sec=none security mode in combination with other security modes, which allows remote attackers to bypass intended access restrictions and read or modify files, as demonstrated by a...

CVE-2009-0873

The NFS daemon aka nfsd in Sun Solaris 10 and OpenSolaris before snv106, when NFSv3 is used, does not properly implement combinations of security modes, which allows remote attackers to bypass intended access restrictions and read or modify files, as demonstrated by a combination of the sec=sys a...

CVE-2009-0872

CVE-2009-0872 affects Sun Solaris 10 and OpenSolaris builds prior to snv_111, where the NFS server fails to properly enforce AUTH_NONE (sec=none) when used with other security modes. This allows remote attackers to bypass access controls and read/modify files by abusing a combination of AUTH_NONE...