103 matches found
Apple Mac OSX 10.4.x - iPhoto 'photo://' URL Handling Format String
source: https://www.securityfocus.com/bid/22326/info Multiple products for Mac OS X are prone to multiple remote format-string vulnerabilities. The affected applications include Help Viewer, Safari, iPhoto, and iMovie. Exploiting these issues can allow attacker-supplied data to be written to...
Apple Mac OSX 10.4.x - Safari window.console.log Format String
source: https://www.securityfocus.com/bid/22326/info Multiple products for Mac OS X are prone to multiple remote format-string vulnerabilities. The affected applications include Help Viewer, Safari, iPhoto, and iMovie. Exploiting these issues can allow attacker-supplied data to be written to...
Apple Mac OSX 10.4.x - Help Viewer '.help' Filename Format String
source: https://www.securityfocus.com/bid/22326/info Multiple products for Mac OS X are prone to multiple remote format-string vulnerabilities. The affected applications include Help Viewer, Safari, iPhoto, and iMovie. Exploiting these issues can allow attacker-supplied data to be written to...
Debian DSA-1034-1 : horde2 - several vulnerabilities
Several remote vulnerabilities have been discovered in the Horde web application framework, which may lead to the execution of arbitrary web script code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-1260 Null characters in the URL parameter bypas...
Debian DSA-1033-1 : horde3 - several vulnerabilities
Several remote vulnerabilities have been discovered in the Horde web application framework, which may lead to the execution of arbitrary web script code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2005-4190 Several Cross-Site-Scripting vulnerabiliti...
FreeBSD : horde -- various problems in dereferrer (e94cb43d-0c4a-11db-9016-0050bf27ba24)
Horde 3.1.2 release announcement : Security Fixes : - Closed XSS problems in dereferrer IE only, help viewer and problem reporting screen. - Removed unused image proxy code from dereferrer. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...
horde -- various problems in dereferrer
Horde 3.1.2 release announcement: Security Fixes: Closed XSS problems in dereferrer IE only, help viewer and problem reporting screen. Removed unused image proxy code from dereferrer...
Horde <= 3.0.9, 3.1.0 (Help Viewer) Remote Code Execution (metasploit)
Exploit for unknown platform in category web applications ====================================================================== Horde package Msf::Exploit::hordehelpmodule; use base "Msf::Exploit"; use strict; use Pex::Text; use bytes; my $advanced = ; my $info = 'Name' = 'Horde help viewer modu...
Horde <= 3.0.9 3.1.0 (Help Viewer) Remote Code Execution (metasploit)
No description provided by source. Title: Horde = 3.0.9, 3.1.0 Help Viewer Remote PHP Code Execution Vulnerability Name: hordehelpmodule.pm License: Artistic/BSD/GPL Info: Trying to get the command execution exploits out of the way on milw0rm.com. M's are always good. - This is an exploit module...
Horde 3.0.9/3.1.0 - Help Viewer Remote Code Execution (Metasploit)
Title: Horde package Msf::Exploit::hordehelpmodule; use base "Msf::Exploit"; use strict; use Pex::Text; use bytes; my $advanced = ; my $info = 'Name' = 'Horde help viewer module remote PHP code execution', 'Version' = '$Revision: 1.0 $', 'Authors' = 'inkubus ' , 'Arch' = , 'OS' = , 'Priv' = 0,...
GLSA-200604-02 : Horde Application Framework: Remote code execution
The remote host is affected by the vulnerability described in GLSA-200604-02 Horde Application Framework: Remote code execution Jan Schneider of the Horde team discovered a vulnerability in the help viewer of the Horde Application Framework that could allow remote code execution CVE-2006-1491. Pa...
Horde Help Viewer <= 3.1 Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl Wed Apr 5 21:51:12 CEST 2006 [email protected] Horde help module remote execution telnet 310.27.901.33.1109 1689 thanks horatio for the address USER paranoia PASS total SYST REST 100 REST 0 PWD TYPE A PASV LIST CWD 0days GET horddy.pl w0w this dam...
Horde Help Viewer <= 3.1 Remote Command Execution Exploit
Exploit for unknown platform in category web applications ========================================================= Horde Help Viewer $host, 'dir=s' = $dir, 'proxy=s' = $proxy, 'proxyuser=s' = $proxyuser, 'proxypass=s' = $proxypass, 'debug' = $debug; &help unless $host; please don't try this...
Horde Help Viewer 3.1 - Remote Command Execution
!/usr/bin/perl Wed Apr 5 21:51:12 CEST 2006 [email protected] Horde help module remote execution telnet 310.27.901.33.1109 1689 thanks horatio for the address USER paranoia PASS total SYST REST 100 REST 0 PWD TYPE A PASV LIST CWD 0days GET horddy.pl w0w this damn 0day ftp is so sexy! GO GO GO !! ...
Horde Application Framework: Remote code execution
Background The Horde Application Framework is a general-purpose web application framework written in PHP, providing classes for handling preferences, compression, browser detection, connection tracking, MIME and more. Description Jan Schneider of the Horde team discovered a vulnerability in the...
CVE-2006-1491
Eval injection vulnerability in Horde Application Framework versions 3.0 before 3.0.10 and 3.1 before 3.1.1 allows remote attackers to execute arbitrary code via the help viewer...
Design/Logic Flaw
Eval injection vulnerability in Horde Application Framework versions 3.0 before 3.0.10 and 3.1 before 3.1.1 allows remote attackers to execute arbitrary code via the help viewer...
CVE-2006-1491
Eval injection vulnerability in Horde Application Framework versions 3.0 before 3.0.10 and 3.1 before 3.1.1 allows remote attackers to execute arbitrary code via the help viewer...
CVE-2006-1491
Eval injection vulnerability in Horde Application Framework versions 3.0 before 3.0.10 and 3.1 before 3.1.1 allows remote attackers to execute arbitrary code via the help viewer...
horde -- remote code execution vulnerability in the help viewer
Horde 3.1.1 release announcement: Major changes compared to Horde 3.1 are: Fix for remote code execution vulnerability in the help viewer, discovered by Jan Schneider from the Horde team...