Microsoft Windows Vista Windows Mail Local File Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23103/info Microsoft Windows Vista Windows Mail is prone to a local file-execution vulnerability due to a design error. An attackers may exploit this issue to execute local files. The attacker must entice a victim into...

Jinzora <= 2.7 (include_path) Multiple Remote File Include Vulnerabilities

No description provided by source. +------------------------------------------------------------------------------------------- + Jinzora = 2.7 includepath Multiple Remote File Include Vulnerabilities +------------------------------------------------------------------------------------------- +...

Foing 0.x Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18392/info Foing is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remo...

AOL Instant Messenger 4.8.2790 Local File Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6027/info AOL Instant Messenger AIM is prone to an issue which may allow attackers to execute arbitrary files on the client system. It is possible to send a malicious link which references local files to a user of the...

Fantastic News <= 2.1.4 - Multiple Remote File Include Vulnerabilities

No description provided by source. +------------------------------------------------------------------------------------------- + Fantastic News == 2.1.4 CONFIGscriptpath Multiple Remote File Include Vulnerabilities...

Opera 7.22 - File Creation and Execution Exploit (Webserver)

No description provided by source. !/usr/bin/perl Sample code of Opera 7 Arbitrary File Auto-Saved Vulnerability. This Exploit will run a webserver that will create and execute a batch file on the victim's computer when visiting this malicious server This perl script is a small HTTP server for a...

ME Download System <= 1.3 (header.php) Remote Inclusion Vulnerability

No description provided by source. +-------------------------------------------------------------------- + + ME Download System 1.3 Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: ME Download System 1.3 + Venedor ...........:...

MODx CMS <= 0.9.2.1 (FCKeditor) Remote File Include Vulnerability

No description provided by source. +------------------------------------------------------------------------------------------- + MODx CMS 0.9.2.1 basepath Remote File Include Vulnerability +------------------------------------------------------------------------------------------- + Affected...

Microsoft Internet Explorer 5.0.1/6.0 Content-Disposition Handling File Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4752/info An issue exists in the way Microsoft Internet Explorer handles conflicting information in some HTTP headers used to describe non-HTML content. A malicious web server may provide content with misleading values in...

PowerClan <= 1.14a (footer.inc.php) Remote File Include Vulnerability

No description provided by source. +------------------------------------------------------------------------------------------- + PowerClan = 1.14a footer.inc.php Remote File Include Vulnerability +------------------------------------------------------------------------------------------- + Vendo...

PHP 4.x SafeMode Arbitrary File Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2954/info PHP is the Personal HomePage development toolkit, distributed by the PHP.net, and maintained by the PHP Development Team in public domain. A problem with the toolkit could allow elevated privileges, and...

CdomainFree <= 2.4 - Remote File Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/304/info A vulnerability in a CGI program part of CdomainFree allows remote malicious users to run any executable already existing to the machine. The vulnerability is in the whoisraw.cgi program. This CGI passes user inp...

Microsoft Outlook Express 6.0 MHTML Forced File Execution Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/9105/info A vulnerability has been discovered in Microsoft Outlook Express when handling MHTML file and res URIs that could lead to an unexpected file being downloaded and executed. The problem occurs due to the component...

Microsoft Internet Explorer 6 %USERPROFILE% File Execution Weakness

No description provided by source. source: http://www.securityfocus.com/bid/7826/info Microsoft Internet Explorer is prone to an issue which could permit an attacker to load a known, existing file in a user's temporary directory or possibly other directories in a user's profile. It is possible to...

Mitsubishi MC-WorkX 8.02 ActiveX Control (IcoLaunch) File Execution

No description provided by source. html object classid='clsid:C28A127E-4A85-11D3-A5FF-00A0249E352D' id='target'/object !-- Mitsubishi MC-WorkX Suite Insecure ActiveX Control - IcoLaunch.dll Vendor: http://www.meau.com Version: MC-WorkX 8.02 Tested on: Windows XP SP3 / IE 6 Download:...

FVWM 2.4.17/2.5.8 fvwm_make_browse_menu.sh Scripts Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9922/info It has been reported that the FVWM fvwmmakebrowsemenu.sh script is prone to a command execution vulnerability. This issue is due to the script allowing a user to define which application should be used to execut...

Azucar CMS <= 1.3 (admin/index_sitios.php) File Inclusion Vulnerability

No description provided by source. +------------------------------------------------------------------------------------------- + Azucar CMS = 1.3 VIEW Remote File Include Vulnerability +------------------------------------------------------------------------------------------- + Affected Softwar...

TSEP <= 0.942 (copyright.php) Remote Inclusion Vulnerability

No description provided by source. +-------------------------------------------------------------------- + + TSEP 0.9.4.2 + +-------------------------------------------------------------------- + + Affected Software .: TSEP 0.9.4.2 + Venedor ...........: http://www.tsep.info/ + Class ...............

Microsoft Outlook Express 6.0 MHTML Forced File Execution Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/9105/info A vulnerability has been discovered in Microsoft Outlook Express when handling MHTML file and res URIs that could lead to an unexpected file being downloaded and executed. The problem occurs due to the component...

Sonium Enterprise Adressbook <= 0.2 (folder) Include Vulnerability

No description provided by source. +-------------------------------------------------------------------- + + Sonium Enterprise Adressbook Version 0.2 folder RFI + + Original advisory: + http://www.bb-pcsecurity.de/Websecurity/342/org/SoniumEnterpriseAdressbookVersion0.2folderRFI.htm +...