CVE-2008-7254

Directory traversal vulnerability in includes/template-loader.php in Irmin CMS formerly Pepsi CMS 0.5 and 0.6 BETA2, when registerglobals is enabled, allows remote attackers to include and execute arbitrary files via a .. dot dot in the RootPath parameter. NOTE: some of these details are obtained...

OpenJDK Loader-constraint table allows arrays instead of only the base-classes (6626217)

Unspecified vulnerability in the HotSpot Server component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.225, and 1.3.127 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

OpenJDK Loader-constraint table allows arrays instead of only the base-classes (6626217)

Unspecified vulnerability in the HotSpot Server component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.225, and 1.3.127 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

OpenJDK Loader-constraint table allows arrays instead of only the base-classes (6626217)

Unspecified vulnerability in the HotSpot Server component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.225, and 1.3.127 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

Pepsi CMS (Irmin cms) pepsi-0.6-BETA2 - Multiple Local File

Pepsi CMS Irmin cms pepsi-0.6-BETA2 - Multiple Local File Pepsi CMS Irmin cms pepsi-0.6-BETA2 Multiple Local File Vulnerability fucking the Web Apps LFI 1 - attack edition /\ \ /\ \ /\ /\ \ \ \ \L\ \ \ /'\ /\ \ \ ,\ \ \ \ \ /\ /\ \ /'\ \ , /\ \ /' \ /' \ \ \ /\ \ \ /'\ \ \ /\ \ \ /\ /...

Kolang 4.3.10 < 5.3.0 - 'proc_open()' PHP 'safe_mode' Bypass

// "shellcode loader" : load and execute arbitrary shellcode from a file //...

Fedora Update for mingw32-libltdl FEDORA-2010-2943

Check for the Version of mingw32-libltdl OpenVAS Vulnerability Test Fedora Update for mingw32-libltdl FEDORA-2010-2943 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

Fedora Update for mingw32-libltdl FEDORA-2010-2341

Check for the Version of mingw32-libltdl OpenVAS Vulnerability Test Fedora Update for mingw32-libltdl FEDORA-2010-2341 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

[SECURITY] Fedora 11 Update: mingw32-libltdl-1.5.26-17.fc11

The mingw32-libltdl package contains the GNU Libtool Dynamic Module Loader, a library that provides a consistent, portable interface which simplifies the process of using dynamic modules, for the mingw32 cross compilation environment. These runtime libraries are needed by programs that link...

[SECURITY] Fedora 12 Update: mingw32-libltdl-1.5.26-20.fc12

The mingw32-libltdl package contains the GNU Libtool Dynamic Module Loader, a library that provides a consistent, portable interface which simplifies the process of using dynamic modules, for the mingw32 cross compilation environment. These runtime libraries are needed by programs that link...

PT-2010-2098 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.32.8 Description: The issue is related to the load elf binary function in the Linux kernel, which does not ensure the availability of the ELF interpreter before calling the SET PERSONALITY macro. This allows...

BlackBerry Application Web Loader ActiveX Control Buffer Overflow (CVE-2009-0305)

The BlackBerry Application Web Loader allows to download the BlackBerry applications from a web server using a browser supporting ActiveX controls onto a handheld device. It makes deployment of new applications and updates easier for developers. A user can load the application to their BlackBerry...

libtool: libltdl may load and execute code from a library in the current directory

ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file...

DEBIAN-CVE-2009-3909

Integer overflow in the readchanneldata function in plug-ins/file-psd/psd-load.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a crafted PSD file that triggers a heap-based buffer overflow...

CVE-2009-3525

The pyGrub boot loader in Xen 3.0.3, 3.3.0, and Xen-3.3.1 does not support the password option in grub.conf for para-virtualized guests, which allows attackers with access to the para-virtualized guest console to boot the guest or modify the guest's kernel boot parameters without providing the...

Design/Logic Flaw

The pyGrub boot loader in Xen 3.0.3, 3.3.0, and Xen-3.3.1 does not support the password option in grub.conf for para-virtualized guests, which allows attackers with access to the para-virtualized guest console to boot the guest or modify the guest's kernel boot parameters without providing the...

CVE-2009-3525

The pyGrub boot loader in Xen 3.0.3, 3.3.0, and Xen-3.3.1 does not support the password option in grub.conf for para-virtualized guests, which allows attackers with access to the para-virtualized guest console to boot the guest or modify the guest's kernel boot parameters without providing the...

RHEL 4 / 5 : java-1.5.0-ibm (RHSA-2007:0829)

Updated java-1.5.0-ibm packages that correct several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. IBM's 1.5.0 Java release includes the IBM Java 2...

PT-2009-2346 · Zen Cart · Zen Cart

Name of the Vulnerable Software and Affected Versions: Zen Cart versions 1.3.8 through 1.3.8a Description: A directory traversal issue exists, allowing remote attackers to include and execute arbitrary local files via a .. dot dot in the loader file parameter in admin/includes/initsystem.php when...

FreeBSD 7.2 (pecoff executable) Local Denial of Service Exploit

No description provided by source. / pecoffpanic.c by Shaun Colley, 20 July 2009 this code will panic the freebsd kernel due to a bug in the PECOFF executable loader code 'options PECOFFSUPPORT' in kernel config or kldload pecoff panic9 is in vmfault due to a page fault. the panic seems to be...