3196 matches found
PHP Live Helper 2.0 - 'abs_path' Remote File Inclusion
\ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV43$2006 ------------------------------------------------------------------------------ ECHOADV43$2006 PHP Live Helper = 2.0 abspath Remote File Inclusion...
Mandrake Linux Security Advisory : ppp (MDKSA-2006:119)
Marcus Meissner discovered that pppd's winbind plugin did not check for the result of the setuid call which could allow an attacker to exploit this on systems with certain PAM limits enabled to execute the NTLM authentication helper as root. This could possibly lead to privilege escalation...
[Full-disclosure] [USN-310-1] ppp vulnerability
=========================================================== Ubuntu Security Notice USN-310-1 July 05, 2006 ppp vulnerability CVE-2006-2194 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 5.10 Ubuntu 6.06 LTS This advisory...
phpliveHelper.txt
--------------------------------------------------------------------------- PHP Live Helper =abspath Remote File Include Vulnerabilities --------------------------------------------------------------------------- Discovered By SnIpErSA Author : SnIpErSA Remote : Yes Local : No Critical Level :...
PHP Live Helper <=([abs_path]) Remote File Include Vulnerabilities
--------------------------------------------------------------------------- PHP Live Helper =abspath Remote File Include Vulnerabilities --------------------------------------------------------------------------- Discovered By SnIpErSA Author : SnIpErSA Remote : Yes Local : No Critical Level :...
PHP Live Helper <= 1.x (abs_path) Remote File Include Vulnerability
No description provided by source. --------------------------------------------------------------------------- PHP Live Helper =abspath Remote File Include Vulnerabilities --------------------------------------------------------------------------- Discovered By SnIpErSA Author : SnIpErSA Remote :...
PHP Live Helper 1.x - abs_path Remote File Inclusion
PHP Live Helper 1.x - abspath Remote File Inclusion --------------------------------------------------------------------------- PHP Live Helper =abspath Remote File Include Vulnerabilities --------------------------------------------------------------------------- Discovered By SnIpErSA Author :...
PHP Live Helper <= 1.x (abs_path) Remote File Include Vulnerability
Exploit for unknown platform in category web applications =================================================================== PHP Live Helper = 1.x abspath Remote File Include Vulnerability ===================================================================...
PHP Live Helper 1.x - 'abs_path' Remote File Inclusion
--------------------------------------------------------------------------- PHP Live Helper =abspath Remote File Include Vulnerabilities --------------------------------------------------------------------------- Discovered By SnIpErSA Author : SnIpErSA Remote : Yes Local : No Critical Level :...
CVE-2006-2444
The snmptrapdecode function in the SNMP NAT helper for Linux kernel before 2.6.16.18 allows remote attackers to cause a denial of service crash via unspecified remote attack vectors that cause failures in snmptrapdecode that trigger 1 frees of random memory or 2 frees of previously-freed memory...
CVE-2006-2444
The snmptrapdecode function in the SNMP NAT helper for Linux kernel before 2.6.16.18 allows remote attackers to cause a denial of service crash via unspecified remote attack vectors that cause failures in snmptrapdecode that trigger 1 frees of random memory or 2 frees of previously-freed memory...
CVE-2006-2444
CVE-2006-2444 affects the Linux kernel SNMP NAT Netfilter processing. The vulnerability in snmp_trap_decode (kernel = 2.6.16.18) or applying vendor patches where applicable. No additional exploitation details are provided in the documents.
CVE-2006-2394
Cross-site scripting XSS vulnerability in chat.php in PHP Live Helper allows remote attackers to inject arbitrary web script or HTML via the PHPSESSID parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in chat.php in PHP Live Helper allows remote attackers to inject arbitrary web script or HTML via the PHPSESSID parameter...
CVE-2006-2394
Cross-site scripting XSS vulnerability in chat.php in PHP Live Helper allows remote attackers to inject arbitrary web script or HTML via the PHPSESSID parameter...
CVE-2006-2394
CVE-2006-2394 affects PHP Live Helper’s chat.php, where the PHPSESSID parameter enables cross-site scripting. The vulnerability allows remote attackers to inject arbitrary web script or HTML in the context of the affected site. Public references (including Exploit-DB) document a browser-executabl...
PHP Live Helper ASP(chat.php) XSS
================== Credit: Mr-X Site: www.alshmokh.com Email: [email protected] ================== Example:- /chat.php?action=showmain&PHPSESSID=XSS...
beagle insecure command line construction
CESA-2006-002 - rev 1 See all my vulnerabilities at http://scary.beasts.org/security beagle insecure command line construction Programs affected: beagle-0.2.4 and older. Severity: Command line argument injection to helper applications. Fixed: beagle-0.2.5 CVE identifiers: CVE-2006-1865 beagle is ...
CVE-2006-1865
Argument injection vulnerability in Beagle before 0.2.5 allows attackers to execute arbitrary commands via crafted filenames that inject command line arguments when Beagle launches external helper applications while indexing...
CVE-2006-1865
Argument injection vulnerability in Beagle before 0.2.5 allows attackers to execute arbitrary commands via crafted filenames that inject command line arguments when Beagle launches external helper applications while indexing...