Fedora Core 10 FEDORA-2009-6547 (rb_libtorrent)

The remote host is missing an update to rblibtorrent announced via advisory FEDORA-2009-6547. OpenVAS Vulnerability Test $Id: fcore20096547.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-6547 rblibtorrent Authors: Thomas Reinke Copyright: Copyright...

Fedora Core 9 FEDORA-2009-6619 (rb_libtorrent)

The remote host is missing an update to rblibtorrent announced via advisory FEDORA-2009-6619. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C ...

CVE-2009-2177

code/display.php in fuzzylime cms 3.03a and earlier, when magicquotesgpc is disabled, allows remote attackers to conduct directory traversal attacks and overwrite arbitrary files via a "....//" dot dot in the s parameter, which is collapsed into a "../" value...

McAfee Policy Manager 'naPolicyManager.dll'任意文件覆盖漏洞

Bugraq ID: 35404 McAfee ePolicy Orchestrator是一款业界领先的系统安全管理解决方案，能够帮助企业有效抵御各种恶意威胁和攻击。 McAfee Policy Manager 'naPolicyManager.dll'控件存在设计问题，远程攻击者可以利用漏洞以应用程序权限覆盖系统文件。 问题存在于WriteTaskDataToIniFile方法中，提交恶意文件作为参数，可导致以应用程序权限覆盖系统文件。 0 McAfee Policy Manager 目前没有解决方案提供： a href="http://www.mcafee.com/"...

Uebimiau Web-Mail 3.2.0-1.8 File Overwrite

Uebimiau Webmail After That Click Write To File Go /uebimiau/index.php?cmd=id See Pic :http://www.almlf.com/get-6-2009-almlfcomakszizl2.png Thanx To ... | || \ \ \ / / / \ / | ---| |----| | | \ / / / ^ \ | | | | | / \ / / /\ \ | | | | | | | |\ ----. | | / \ | || | || | | .| || // \ | . . / \ /...

Uebimiau Web-Mail 3.2.0-1.8 - Remote File Overwrite

Uebimiau Web-Mail 3.2.0-1.8 - Remote File Overwrite Uebimiau Webmail After That Click Write To File Go /uebimiau/index.php?cmd=id See Pic :http://www.almlf.com/get-6-2009-almlfcomakszizl2.png Thanx To ... | || \ \ \ / / / \ / | ---| |----| | | \ / / / ^ \ | | | | | / \ / / /\ \ | | | | | | | |...

Uebimiau Web-Mail 3.2.0-1.8 - Remote File / Overwrite

Uebimiau Webmail After That Click Write To File Go /uebimiau/index.php?cmd=id See Pic :http://www.almlf.com/get-6-2009-almlfcomakszizl2.png Thanx To ... | || \ \ \ / / / \ / | ---| |----| | | \ / / / ^ \ | | | | | / \ / / /\ \ | | | | | | | |\ ----. | | / \ | || | || | | .| || // \ | . . / \ /...

Rasterbar libtorrent arbitrary file overwrite vulnerability

'libtorrent' is an open-source C++ bittorrent library by Rasterbar Software that is used in many desktop applications and embedded devices. Popular BitTorrent clients that use this library are 'firetorrent', 'qBittorrent' and 'deluge Torrent'. For a more comprehensive list of libtorrent-based...

Code injection

The malloc subsystem in libc in IBM AIX 5.3 and 6.1 allows local users to create or overwrite arbitrary files via a symlink attack on the log file associated with the MALLOCDEBUG environment variable...

CVE-2009-1753

Coccinelle 0.1.7 allows local users to overwrite arbitrary files via a symlink attack on an unspecified "result file."...

iDefense Security Advisory 05.20.09: IBM AIX libc MALLOCDEBUG File Overwrite Vulnerability

iDefense Security Advisory 05.19.09 http://labs.idefense.com/intelligence/vulnerabilities/ May 19, 2009 I. BACKGROUND IBM's AIX is a Unix operating system based on System V, which runs on the PowerPC PPC architecture. For more information, visit the product web site at the following URL...

Bitweaver <= 2.6 saveFeed() Remote Code Execution Exploit

No description provided by source. ?php / Bitweaver = 2.6 /boards/boardsrss.php / saveFeed remote code execution exploit by Nine:Situations:Group::bookoo php.ini independent site: http://retrogod.altervista.org/ software site: http://www.bitweaver.org/ You need an user account and you need to...

Bitweaver 2.6 - 'saveFeed()' Remote Code Execution

saveFeed $rssversionname, $cacheFile ; ... it calls saveFeed function in an insecure way, arguments are built on $REQUESTversion var and may contain directory traversal sequences... now look at saveFeed function in /rss/feedcreator.class.php ... function saveFeed$filename="", $displayContents=tru...

Design/Logic Flaw

JBMC Software DirectAdmin before 1.334 allows local users to create or overwrite any file via a symlink attack on an arbitrary file in a certain temporary directory, related to a request for this temporary file in the PATHINFO to the CMDDB script during a backup action...

CVE-2009-1526

CVE-2009-1526 affects JBMC Software DirectAdmin versions prior to 1.334. The vulnerability is a local privilege issue where an attacker can create or overwrite arbitrary files via a symlink attack on a temporary file used in the CMD_DB script during a backup action. The root cause is improper han...

PT-2009-4023

Name of the Vulnerable Software and Affected Versions: JBMC Software DirectAdmin versions prior to 1.334 Description: The issue allows local users to create or overwrite any file via a symlink attack on an arbitrary file in a certain temporary directory. This is related to a request for this...

FreeBSD : xine-lib arbitrary file overwrite (e50b04e8-9c55-11d8-9366-0020ed76ef5a)

From the xinehq advisory : By opening a malicious MRL in any xine-lib based media player, an attacker can write arbitrary content to an arbitrary file, only restricted by the permissions of the user running the application. The flaw is a result of a feature that allows MRLs media resource locator...

NTOP <= 3.3.9 access Log File Overwrite

Binary data 4999.prm...

DirectAdmin Local File Overwrite

Subject: DirectAdmin /etc/poc' http://directadminserver:2222/CMDDB On server: $ ls -la /etc/poc -rw-r--r-- 1 root root 5 Apr 22 10:30 /etc/poc $ cat /etc/poc test --...

PHP-Agenda 2.2.5 File Overwrite

Salvatore "drosophila" Fresta + Application: PHP-agenda + Version: PHP-agenda To execute commands: http://www.site.com/path/config.inc.php?cmd=uname -a + Fix You must delete install.php after installation...