PT-2011-48: Multiple Vulnerabilities in AtMail

Specialists from the Positive Technologies Research Center have revealed multiple vulnerabilities in the AtMail webmail interface. 1. Arbitrary Files Loading The system allows one to load files attached to email letters. File extension is not checked; thus, arbitrary files including .php files ca...

Oracle Java Runtime Environment Insecure File Loading

Added: 08/08/2011 OSVDB: 74330 Background The Java Runtime Environment JRE is part of the Java Development Kit JDK, a set of programming tools for developing Java applications. The Java Runtime Environment provides the minimum requirements for executing a Java application; it consists of the Java...

Oracle Java Runtime Environment Insecure File Loading

Added: 08/08/2011 OSVDB: 74330 Background The Java Runtime Environment JRE is part of the Java Development Kit JDK, a set of programming tools for developing Java applications. The Java Runtime Environment provides the minimum requirements for executing a Java application; it consists of the Java...

OllyDbg 2.01 alpha 4 released

OllyDbg 2.01 alpha 4 released Other new features in this version: - Patch manager, similar to 1.10 - Shortcut editor, supports weird things like Ctrl+Win+$ etc. Now you can customize and share your shortcuts. I haven't tested it on Win7, please report any found bugs and incompatibilities! -...

Foxit Reader < 5.0.2.0718 Multiple Vulnerabilities

The version of Foxit Reader installed on the remote Windows host is prior to 5.0.2.0718. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in how dynamic-link library DLL files are located and loaded, specifically files dwmapi.dll, dwrite.dll, and msdrm.dll. The application...

Oracle Java Runtime Environment Insecure File Loading

A code execution vulnerability has been reported in Oracle's Java Runtime Environment. The vulnerability is due to a design flaw in the way that Java Runtime Environment loads configuration files. Attackers can exploit this vulnerability to set JVM options. Successful exploitation of this...

PT-2011-10: Abritrary Files Loading in ManageEngine ServiceDesk Plus 8.0

The specialists of the Positive Research center have detected "Abritrary Files Loading" vulnerability in ManageEngine ServiceDesk Plus. Insufficient CSV file input filtering in user import script allows attackers with guest privileges account guest/guest overwrite an arbitrary file in bin folder ...

Design/Logic Flaw

DAZ Studio 2.3.3.161, 2.3.3.163, and 3.0.1.135 allows remote attackers to execute arbitrary JavaScript code via a 1 .ds, 2 .dsa, 3 .dse, or 4 .dsb file, as demonstrated by code that loads the WScript.Shell ActiveX control, related to a "script injection vulnerability."...

Ubuntu 8.10 / 9.04 / 9.10 : openjdk-6 vulnerabilities (USN-859-1)

Dan Kaminsky discovered that SSL certificates signed with MD2 could be spoofed given enough time. As a result, an attacker could potentially create a malicious trusted certificate to impersonate another site. This update handles this issue by completely disabling MD2 for certificate validation in...

Fedora Update for imlib2 FEDORA-2008-10296

Check for the Version of imlib2 OpenVAS Vulnerability Test Fedora Update for imlib2 FEDORA-2008-10296 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

Fedora Update for imlib2 FEDORA-2008-10364

Check for the Version of imlib2 OpenVAS Vulnerability Test Fedora Update for imlib2 FEDORA-2008-10364 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

CVE-2007-6720

libmikmod 3.1.9 through 3.2.0, as used by MikMod, SDL-mixer, and possibly other products, relies on the channel count of the last loaded song, rather than the currently playing song, for certain playback calculations, which allows user-assisted attackers to cause a denial of service application...

fuzzylinecms-exec.txt

!/usr/bin/perl fuzzylime 3.0.1 Perl exploit discovered & written by Ams [email protected] DESCRIPTION: There are availability to load files through script rss.php, and also there are unfiltered extract; usage. This exploit creates shell in /code/counter/middleindexinc.php USAGE: Run exploit: perl...

fuzzylime (cms) 3.01 Remote Command Execution Exploit

No description provided by source. !/usr/bin/perl fuzzylime 3.0.1 Perl exploit discovered & written by Ams [email protected] DESCRIPTION: There are availability to load files through script rss.php, and also there are unfiltered extract; usage. This exploit creates shell in...

fuzzylime cms 3.01 Remote Command Execution Exploit

Exploit for unknown platform in category web applications =================================================== fuzzylime cms 3.01 Remote Command Execution Exploit =================================================== !/usr/bin/perl fuzzylime 3.0.1 Perl exploit discovered & written by Ams DESCRIPTION...

CVE-2006-6629

The CVE-2006-6629 issue affects WeBWorK PG Language prior to version 2.3.1. It concerns lib/WeBWorK/PG/Translator.pm, where an insufficiently restrictive regular expression to validate macro filenames allows loading of arbitrary macro files whose names contain the strings dangerousMacros.pl, PG.p...

PT-2006-1093 · K Meleon +4 · K-Meleon +4

Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions 1.5.0.6 and earlier K-Meleon version 1.0.1 and earlier Netscape Navigator version 8.1 and earlier Description: The issue is related to insufficient access control and concurrency vulnerabilities, allowing a remote...

CVE-2005-0141

Firefox before 1.0 and Mozilla before 1.7.5 allow remote attackers to load local files via links "with a custom getter and toString method" that are middle-clicked by the user to be opened in a new tab...

Link opened in new tab can load a local file — Mozilla

Links with a custom getter and toString method can bypass checks intended to prevent web content from linking to local files and "chrome" URIs if the user can be convinced to middle-click or control-click to open it in a new tab. The browser's "same-origin" policy prevents the attacker's content...

Novell Netware Enterprise Web Server 5.16.0 - Multiple Cross-Site Scripting Vulnerabilities

Novell Netware Enterprise Web Server 5.16.0 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/9479/info Multiple vulnerabilities have been identified in Novell Netware Enterprise Web Server that may allow an attacker to carry out cross-site scripting attack...