ProFTPD buffer overflow

Buffer overflow on ASCII-files uploading...

JBrowser 1.0/2.x - Unauthorized Admin Access

source: https://www.securityfocus.com/bid/9537/info Due to a lack of access validation to the 'admin' directory, malevolent users may be able to execute arbitrary admin scripts. This may allow a malicious user to upload arbitrary files to the affected system and gain access to files outside of th...

paFileDB <= 3.1 Multiple Vulnerabilities (1)

The remote host is running a version of paFileDB that is prone to a wide variety of vulnerabilities, including arbitrary file uploads, local file inclusion, SQL injection, and cross-site scripting issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

QuadComm Q-Shop 2.5 - Failure To Validate Credentials

source: https://www.securityfocus.com/bid/8153/info Zone-H has reported that the Q-Shop ASP shopping cart software contains a vulnerability that may allow remote attackers to upload arbitrary files. Once uploaded, the attacker may be able to have the script executed in the security context of the...

iisCart2000 Administration Security Leak

1ndonesian Security Team 1st http://bosen.net/releases/ ======================================================================= ======================= Security Advisory Advisory Name: iisCart2000 Administration Security Leak Release Date: 05/10/2003 Application: Latest Platform: Win32 Severity:...

CVE-2003-0114

The file upload control in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to automatically upload files from the local system via a web page containing a script to upload the files...

CVE-2002-0484

The CVE-2002-0484 entry describes a PHP vulnerability in move_uploaded_file where the function does not check the base directory (open_basedir). This can allow remote attackers to upload files to locations outside the intended directory. The primary affected component is PHP’s file-upload handlin...

S21SEC-011 - Multiple vulnerabilities in BEA WebLogic Server

ID: S21SEC-011-en Title: Multiple vulnerabilities in BEA WebLogic Server Date: 7/01/2003 Status: Patch published Scope: Remote command execution Platforms: Linux, Windows 2000, probably others Author: llmora Location: http://www.s21sec.com/en/avisos/s21sec-011-en.txt Release: Public S 2 1 S E C...

CVE-2002-0484

moveuploadedfile in PHP does not does not check for the base directory openbasedir, which could allow remote attackers to upload files to unintended locations on the system...

Security Bulletin MS02-041: Unchecked Buffer in Content Management Server Could Enable Server Compromise &#40;Q326075&#41;

---------------------------------------------------------------------- Title: Unchecked Buffer in Content Management Server Could Enable Server Compromise Q326075 Date: 07 August 2002 Software: Microsoft Content Management Server Impact: Three vulnerabilities, the most serious of which could...

Noguska Nola 1.1.1 [ Intranet Business Management Software ]

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Noguska Nola 1.1.1 Intranet Business Management Software .: Software Desciption :. - - compied from their site - Redefining the scope of Enterprise Software The NOLA web based software package allows your business to effortlessly reach further than...

CVE-2002-0081

Buffer overflows in 1 phpmimesplit in PHP 4.1.0, 4.1.1, and 4.0.6 and earlier, and 2 php3mimesplit in PHP 3.0.x allows remote attackers to execute arbitrary code via a multipart/form-data HTTP POST request when fileuploads is enabled...

CVE-2002-0223

Infopop UBB.Threads 5.4 and Wired Community Software WWWThreads 5.0 through 5.0.9 allows remote attackers to upload arbitrary files by using a filename that contains an accepted extension, but ends in a different extension...

Remote Cobalt Raq XTR vulns

----------------------------------------------------------------- Topic : Combined Remote/Local root Cobalt XTR vulnerabilities Date : 02-03-2002 Author : Wouter ter Maat aka [email protected] Url : http://www.digit-labs.org -----------------------------------------------------------------...

CVE-2002-0081

Buffer overflows in 1 phpmimesplit in PHP 4.1.0, 4.1.1, and 4.0.6 and earlier, and 2 php3mimesplit in PHP 3.0.x allows remote attackers to execute arbitrary code via a multipart/form-data HTTP POST request when fileuploads is enabled...

mod_php update fixes security problems

A new modphp PHP4 package is available to fix security problems. Here's the information from the Slackware 8.0 ChangeLog: ---------------------------- Sat Mar 2 22:45:25 PST 2002 patches/packages/modphp.tgz: Upgraded to PHP 4.1.2. This fixes several security problems in the POST handling code use...

PHP contains vulnerability in "php_mime_split" function allowing arbitrary code execution

Overview Vulnerabilities in PHP versions 3 and 4 could allow an intruder to execute arbitrary code with the privileges of the web server. Description PHP is a scripting language widely used in web development. PHP can be installed on a variety of web servers, including Apache, IIS, Caudium,...

Несанкционированный доступ в WWWThreads и UBBThreads &#40;unauthorized access&#41;

Можно загрузить запрещенный тип файлов...

Дырка в NetGAP &#40;URL protection bypass&#41;

Используя escape'd URL можно можно загрузить файлы запрещенные к загрузке...

PHP Security Advisory - File Uploads

Problem ======== PHP supports RFC 1867 based file uploads. PHP saves uploaded files in a temporary directory on the server, using a temporary name. This temporary name is exposed to the PHP script as $FOO, where "FOO" is the name of the file input tag in the submitted form. Many PHP scripts proce...