53 matches found
Code injection
The Ubuntu AccountsService package before 0.6.14-1git1ubuntu1.1 does not properly drop privileges when changing language settings, which allows local users to modify arbitrary files via unspecified vectors...
CVE-2011-4406
The Ubuntu AccountsService package before 0.6.14-1git1ubuntu1.1 does not properly drop privileges when changing language settings, which allows local users to modify arbitrary files via unspecified vectors...
ISPConfig - (Authenticated) Arbitrary PHP Code Execution (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 'ISPConfig Authenticated Arbitrary PHP Code Execution', 'Description' = %q ISPConfig allows an authenticated administrator to export...
Ubuntu: Security Advisory (USN-1351-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 11.10 : accountsservice vulnerability (USN-1351-1)
Hayawardh Vijayakumar discovered that AccountsService incorrectly handled privileges when modifying the language settings on Ubuntu. A local attacker could exploit this issue to modify arbitrary files, and possibly create a denial of service or obtain increased privileges. Note that Tenable Netwo...
USN-1351-1: AccountsService vulnerability
Hayawardh Vijayakumar discovered that AccountsService incorrectly handled privileges when modifying the language settings on Ubuntu. A local attacker could exploit this issue to modify arbitrary files, and possibly create a denial of service or obtain increased privileges...
CVE-2011-4406
The Ubuntu AccountsService package before 0.6.14-1git1ubuntu1.1 does not properly drop privileges when changing language settings, which allows local users to modify arbitrary files via unspecified vectors...
Bypass the invitation to join the Windows Live™ Mail-vulnerability warning-the black bar safety net
First, log into your MSN or HOTMAIL modify personal information Language - English Country - United States State - Florida. 2. Put the following address copy into your browser, just IE address bar, enter. http://by101fd.bay101.hotmail.msn.com/cgi-bin/BetaOptIn?page=option&curmbox=0 0 0 0 0 0 0...
XMame 0.6x - Lang Local Buffer Overflow
XMame 0.6x - Lang Local Buffer Overflow // source: https://www.securityfocus.com/bid/7773/info Xmame is prone to a locally exploitable buffer overflow. This is due to insufficient bounds checking of the command line parameter used to specify language settings --lang. Successful exploitation on so...
msie.5.0.egg.txt
From: "Gibney, Tim" Subject: Not the place but... ...try it anyway. Heh... try this in IE5. Trust me the last part is good : Open up IE5 From the menu, select Tools Internet Options General tab Languages button Press 'Add' Type: "ie-ee" without the quotes and click 'OK' Move "User Defined ie-ee" ...
Detectoid: Exchange Server 2007 LANG Identifier (fr)
...
Works 8.5 Lang by Works LCID - Romanian
...
Detectoid: Exchange Server 2007 LANG Identifier (en)
...