DEBIAN-CVE-2010-2322

Absolute path traversal vulnerability in the extractjar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite arbitrary files via a full pathname for a file within a .jar archive, a related issue to CVE-2010-0831. NOTE: this vulnerability exists because of an...

Open Forum Server 2.2 b005 Arbitrary File Write

============================================================================================================ //\ /\ /\ /\ /\ /\ ///\ //\ /\ /\///\ // \ // //\ \ / //\ \ / // //\ \ /\\ \ \ \ / / / / // \ \ // // // // \ // //\ \\ \ // /// \ \ / \ / // / // / / / / / \ \ / / / ...

OpenForum 2.2 b005 - 'saveAsAttachment()' Method Arbitrary File Creation

source: https://www.securityfocus.com/bid/40364/info OpenForum is prone to a vulnerability that may allow remote attackers to create arbitrary files on a vulnerable system. Successful exploits will allow an attacker to create arbitrary files, which may then be executed to perform unauthorized...

OpenForum 2.2 b005 - saveAsAttachment() Method Arbitrary File Creation

OpenForum 2.2 b005 - saveAsAttachment Method Arbitrary File Creation source: https://www.securityfocus.com/bid/40364/info OpenForum is prone to a vulnerability that may allow remote attackers to create arbitrary files on a vulnerable system. Successful exploits will allow an attacker to create...

Shadow Stream Recorder 3.0.1.7 (.asx) Local Buffer Overflow

No description provided by source. !/usr/bin/python Title: Shadow Stream Recorder 3.0.1.7 .asx Local Buffer Overflow Date: 03-29-2010 Author: b0telh0 Link: http://www.rm-to-mp3.net/downloads/ssrecordersetup.exe Tested on: Windows XP SP3 windows/exec - 228 bytes EXITFUNC=seh, CMD=calc.exe shellcod...

Easy Icon Maker - .ico File Reading Crash

Easy Icon Maker - .ico File Reading Crash ! /usr/bin/python Easy Icon Maker .ico File Reading Crash Homepage: www.icon-maker.com Credit : ItSecTeam mail : [email protected] Web: WwW.ITSecTeam.com Forum: WwW.forum.itsecteam.com Special Tanks : PLATE - [email protected] - B3hz4d - Cdef3nder EAX 30303030 ECX...

Discuz! 7.0-7.2 the background settings. inc. php to write shell vulnerability-vulnerability warning-the black bar safety net

Impact version Discuz! 7.0-7.2 Vulnerability details: if$operation == 'uc' && iswriteable'./ config.inc.php' && $isfounder $ucdbpassnew = $settingsnew'uc''dbpass' == '' ? UCDBPW : $settingsnew'uc''dbpass'; if$settingsnew'uc''connect' $ucdblink = @mysqlconnect$settingsnew'uc''dbhost',...

Interspire Knowledgebase Manager 5.1.3 Cross Site Scripting / SQL Injection

!/bin/sh - Interspire Knowledge Manager - ====================================================================== Table of Contents Affected Software....................................................1 Severity.............................................................2 Vendor's Description of...

mysql provide the right error message [mysql] ERROR 1-bug-warning-the black bar safety net

If the ROOT mention the right to encountered in the process mysql ERROR 1: Can't create/write to file The reasons are the following 1, folder permissions is not enough,you want to give the USERS group read and write permissions; 2, folder, disk full,file write not to go in;empty folder 3, your...

Joomla OzioGallery2 Arbitrary File Write

Exploit Title: Joomla component comoziogallery2 / IMAGIN arbitrary file write Date: 01-01-10 Author: Ubik and er Software Link: oziogallery.joomla.it / imagin.ro Version: all Disclaimer : all the information in this document is provided "as is", for educational purposes only. The authors will not...

Joomla component com_oziogallery2 / IMAGIN arbitrary file write

No description provided by source. Exploit Title: Joomla component comoziogallery2 / IMAGIN arbitrary file write Date: 01-01-10 Author: Ubik and er Software Link: oziogallery.joomla.it / imagin.ro Version: all Disclaimer : all the information in this document is provided "as is", for educational...

Joomla! Component com_oziogallery2 IMAGIN - Arbitrary File Write

Joomla! Component comoziogallery2 IMAGIN - Arbitrary File Write Exploit Title: Joomla component comoziogallery2 / IMAGIN arbitrary file write Date: 01-01-10 Author: Ubik and er Software Link: oziogallery.joomla.it / imagin.ro Version: all Disclaimer : all the information in this document is...

Joomla! Component com_oziogallery2 / IMAGIN - Arbitrary File Write

Exploit Title: Joomla component comoziogallery2 / IMAGIN arbitrary file write Date: 01-01-10 Author: Ubik and er Software Link: oziogallery.joomla.it / imagin.ro Version: all Disclaimer : all the information in this document is provided "as is", for educational purposes only. The authors will not...

Mini-stream Ripper (Windows XP SP2SP3) - Local Overflow

Mini-stream Ripper Windows XP SP2SP3 - Local Overflow !/usr/bin/python ...:| Code Fix/Patch for WinXP - English |:... Referenced: http://www.exploit-db.com/exploits/10745 - mrme and fixed the offset as well as tested the exploit against WinXP SP2 and SP3 Exploit against Mini-Stream 3.0.1.1 WinXP...

JRE applet launcher vulnerability

Unspecified vulnerability in JNLPAppletlauncher in Sun Java SE, and SE for Business, in JDK and JRE 6 Update 14 and earlier and JDK and JRE 5.0 Update 19 and earlier; and Java SE for Business in SDK and JRE 1.4.221 and earlier; allows remote attackers to create or modify arbitrary files via vecto...

DEBIAN-CVE-2009-4023

Argument injection vulnerability in the sendmail implementation of the Mail::Send method Mail/sendmail.php in the Mail package 1.1.14 for PEAR allows remote attackers to read and write arbitrary files via a crafted $from parameter, a different vector than CVE-2009-4111...

PHP 5.3.0 pdflib Arbitrary File Write

Exploit for unknown platform in category local exploits ===================================== PHP 5.3.0 pdflib Arbitrary File Write ===================================== Title: PHP 5.3.0 pdflib Arbitrary File Write CVE-ID: OSVDB-ID: Author: Sina Yazdanmehr Published: 2009-11-06 Verified: yes view...

PHP 5.3.0 pdflib Arbitrary File Write

No description provided by source. Description: ------------ Via this bug , attacker can save a file in path that not allowed in openbasedir . Reproduce code: --------------- ?php // Author : Sina Yazdanmehr R3d.W0rm ; Our Site : http://IrCrash.com if!extensionloaded'pdf' die'pdf extension requir...

PHP 5.3.0 - pdflib Arbitrary File Write

PHP 5.3.0 - pdflib Arbitrary File Write Description: ------------ Via this bug , attacker can save a file in path that not allowed in openbasedir . Reproduce code: --------------- / if!isset$PATH,$VALUE die'/expl.php?p=pathuwantsavefile/filename&v=valueuwantsav einfile'; $IRCRASH = pdfnew;...

PHP 5.3.0 - 'pdflib' Arbitrary File Write

Description: ------------ Via this bug , attacker can save a file in path that not allowed in openbasedir . Reproduce code: --------------- / if!isset$PATH,$VALUE die'/expl.php?p=pathuwantsavefile/filename&v=valueuwantsav einfile'; $IRCRASH = pdfnew; pdfopenfile$IRCRASH,$PATH;...