jQuery uploadify v2.1.0 Remote File Upload

No description provided by source. Exploit Title: jQuery uploadify v2.1.0 Remote File Upload Date: 21/01/2010 Author: k4cp3r/Ablus Version: v2.1.0 uploadify.swf Actionscript: function setAllowedTypes:void allowedTypes = ; if param.fileDesc && param.fileExt var fileDescs:Array =...

DSA-1967-1 transmission - directory traversal

Bulletin has no description...

Adobe Flash Player/Air Multiple Vulnerabilities - dec09 (Windows)

This host is installed with Adobe Flash Player/Air and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbadobeprdtsmultvulndec09win.nasl 8210 2017-12-21 10:26:31Z cfischer $ Adobe Flash Player/Air Multiple Vulnerabilities - dec09 Windows Authors: Antu Sanadi Copyright:...

firefox, nspr security update

CentOS Errata and Security Advisory CESA-2009:1530 Updated firefox packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Firefox is an open sour...

Changetrack 4.3-3 Privilege Escalation

TITLE: Changetrack Privilege Escalation Vulnerability SECUNIA ADVISORY ID: SA36756 VERIFY ADVISORY: http://secunia.com/advisories/36756/ DESCRIPTION: A vulnerability has been discovered in Changetrack, which can be exploited by malicious, local users to gain escalated privileges. The application...

Changetrack 4.3-3 Local Privilege Escalation Vulnerability

No description provided by source. TITLE: Changetrack Privilege Escalation Vulnerability SECUNIA ADVISORY ID: SA36756 VERIFY ADVISORY: http://secunia.com/advisories/36756/ DESCRIPTION: A vulnerability has been discovered in Changetrack, which can be exploited by malicious, local users to gain...

GLSA-200909-06 : aMule: Parameter injection

The remote host is affected by the vulnerability described in GLSA-200909-06 aMule: Parameter injection Sam Hocevar discovered that the aMule preview function does not properly sanitize file names. Impact : A remote attacker could entice a user to download a file with a specially crafted file nam...

aMule: Parameter injection

Background aMule is an eMule-like client for the eD2k and Kademlia networks, supporting multiple platforms. Description Sam Hocevar discovered that the aMule preview function does not properly sanitize file names. Impact A remote attacker could entice a user to download a file with a specially...

lftp security and bug fix update

3.7.11-4 - Resolves: 461922 - lftp 'help mirror' does not display all options defined in manpage 3.7.11-3 - Resolves: 504594 - Alias ''edit' has multiple flaws 3.7.11-2 - Resolves: 504591 - Problems with spaces in file names over HTTP - Resolves: 504594 - Alias ''edit' has multiple flaws 3.7.11-1...

Microsoft IIS 解析文件名“x.asp;x.jpg/x.php;x.jpg”漏洞

Microsoft IIS是一款微软开发的HTTP服务程序。 Microsoft IIS可以ASP或者任何其他可执行扩展执行任何扩展名文件，如"malicioius.asp;.jpg"就以ASP文件方式在服务器上执行，需要文件上传程序通过检查文件名的最后一段作为扩展名来保护系统。利用这个漏洞，攻击者可以绕过保护把危险的可执行文件上传到服务器上。 Microsoft IIS 7.5 Microsoft IIS 7.0 Microsoft IIS 6.0 Microsoft IIS 5.1 Microsoft IIS 5.0 Microsoft IIS 4.0 Microsoft IIS 3...

Formatstring vulnerability in smbclient

Description The smbclient utility in Samba 3.2.0 - 3.2.12 contains a formatstring vulnerability where commands dealing with file names treat user input as format strings to asprintf. An example is: smb: \ put aa%3Fbb putting file aa%3Fbb as \aa0,000000bb 0,0 kb/s average 0,0 kb/s As is obvious,...

Mandriva Update for gimp MDKA-2007:024 (gimp)

Check for the Version of gimp OpenVAS Vulnerability Test Mandriva Update for gimp MDKA-2007:024 gimp Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

CentOS Update for firefox CESA-2008:0549 centos3 i386

Check for the Version of firefox OpenVAS Vulnerability Test CentOS Update for firefox CESA-2008:0549 centos3 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

CVE-2008-5743

pdfjam creates the 1 pdf90, 2 pdfjoin, and 3 pdfnup files with a predictable name, which allows local users to overwrite arbitrary files via a symlink attack...

Code injection

Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.218 and earlier; and SDK and JRE 1.3.123 and earlier creates temporary files with predictable file names, which allows attackers to write malicious JAR files via unknow...

CVE-2008-5360

Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.218 and earlier; and SDK and JRE 1.3.123 and earlier creates temporary files with predictable file names, which allows attackers to write malicious JAR files via unknow...

Heap overflow

Heap-based buffer overflow in the mchexpandwildcards function in osunix.c in Vim 6.2 and 6.3 allows user-assisted attackers to execute arbitrary code via shell metacharacters in filenames, as demonstrated by the netrw.v3 test case...

Gentoo Security Advisory GLSA 200801-01 (remote)

The remote host is missing updates announced in advisory GLSA 200801-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

FreeBSD Security Advisory (FreeBSD-SA-06:01.texindex.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:01.texindex.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

FreeBSD Security Advisory (FreeBSD-SA-06:02.ee.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:02.ee.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...