CVE-2005-0588

Firefox before 1.0.1 and Mozilla before 1.7.6 does not restrict xsl:include and xsl:import tags in XSLT stylesheets to the current domain, which allows remote attackers to determine the existence of files on the local system...

CVE-2005-0588

Firefox before 1.0.1 and Mozilla before 1.7.6 does not restrict xsl:include and xsl:import tags in XSLT stylesheets to the current domain, which allows remote attackers to determine the existence of files on the local system...

HP OpenView Radia Management Portal 1.02.0 - Remote Command Execution

HP OpenView Radia Management Portal 1.02.0 - Remote Command Execution source: https://www.securityfocus.com/bid/13414/info A remote command execution vulnerability affects HP OpenView Radia Management Portal. This issue is due to a failure of the application to properly secure access to critical...

Bakbone Netvault privilege escalation

Hidden windows of local system process handles user's messages...

[SA14981] Sun Solaris Network Port Hijacking Vulnerability

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Sun Solaris Network Port Hijacking Vulnerability SECUN...

[SA14903] portupgrade Insecure Temporary File Creation Vulnerability

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: portupgrade Insecure Temporary File Creation...

[SA14899] Pine rpdump File Creation Race Condition Vulnerability

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Pine rpdump File Creation Race Condition Vulnerability...

[SA14377] IBM HMC Guided Setup Wizard Vulnerability

TITLE: IBM HMC Guided Setup Wizard Vulnerability SECUNIA ADVISORY ID: SA14377 VERIFY ADVISORY: http://secunia.com/advisories/14377/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system OPERATING SYSTEM: IBM Hardware Management Console HMC http://secunia.com/product/3967/...

[SA14389] PeerFTP_5 User Credentials Disclosure

TITLE: PeerFTP5 User Credentials Disclosure SECUNIA ADVISORY ID: SA14389 VERIFY ADVISORY: http://secunia.com/advisories/14389/ CRITICAL: Less critical IMPACT: Exposure of sensitive information WHERE: Local system SOFTWARE: PeerFTP5 5.x http://secunia.com/product/4706/ DESCRIPTION: Kozan has...

[SA14381] Sun Solaris stfontserverd Arbitrary File Manipulation Vulnerability

TITLE: Sun Solaris stfontserverd Arbitrary File Manipulation Vulnerability SECUNIA ADVISORY ID: SA14381 VERIFY ADVISORY: http://secunia.com/advisories/14381/ CRITICAL: Less critical IMPACT: Manipulation of data, DoS WHERE: Local system OPERATING SYSTEM: Sun Solaris 9 http://secunia.com/product/95...

[SA14385] Chat Anywhere User Credentials Disclosure

TITLE: Chat Anywhere User Credentials Disclosure SECUNIA ADVISORY ID: SA14385 VERIFY ADVISORY: http://secunia.com/advisories/14385/ CRITICAL: Less critical IMPACT: Exposure of sensitive information WHERE: Local system SOFTWARE: Chat Anywhere 2.x http://secunia.com/product/3163/ DESCRIPTION: Kozan...

[SA13981] uim Environment Variable Trust Privilege Escalation

TITLE: uim Environment Variable Trust Privilege Escalation SECUNIA ADVISORY ID: SA13981 VERIFY ADVISORY: http://secunia.com/advisories/13981/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: uim 0.x http://secunia.com/product/4680/ DESCRIPTION: Takumi Asaki has...

[VulnWatch] Secunia Research: Yahoo! Messenger Audio Setup Wizard Privilege Escalation

====================================================================== Secunia Research 18/02/2005 - Yahoo! Messenger Audio Setup Wizard Privilege Escalation - ====================================================================== Table of Contents Affected...

[SA14213] XView "xv_parse_one()" Buffer Overflow Vulnerability

TITLE: XView "xvparseone" Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA14213 VERIFY ADVISORY: http://secunia.com/advisories/14213/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: XView 3.x http://secunia.com/product/4632/ DESCRIPTION: Erik Sjцlund has...

[SA14119] D-BUS Session Bus Hijack Vulnerability

TITLE: D-BUS Session Bus Hijack Vulnerability SECUNIA ADVISORY ID: SA14119 VERIFY ADVISORY: http://secunia.com/advisories/14119/ CRITICAL: Less critical IMPACT: Hijacking WHERE: Local system SOFTWARE: D-BUS 0.x http://secunia.com/product/4599/ DESCRIPTION: Daniel Reed has reported a vulnerability...

[SA14120] Perl "PERLIO_DEBUG" Privilege Escalation Vulnerabilities

TITLE: Perl "PERLIODEBUG" Privilege Escalation Vulnerabilities SECUNIA ADVISORY ID: SA14120 VERIFY ADVISORY: http://secunia.com/advisories/14120/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: Perl 5.x http://secunia.com/product/2647/ DESCRIPTION: Kevin...

[SA13992] Sun Solaris DHCP Administration Utilities Vulnerability

TITLE: Sun Solaris DHCP Administration Utilities Vulnerability SECUNIA ADVISORY ID: SA13992 VERIFY ADVISORY: http://secunia.com/advisories/13992/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system OPERATING SYSTEM: Sun Solaris 8 http://secunia.com/product/94/ DESCRIPTION: A...

[SA13970] FireHOL Insecure Temporary File Creation Vulnerabilities

TITLE: FireHOL Insecure Temporary File Creation Vulnerabilities SECUNIA ADVISORY ID: SA13970 VERIFY ADVISORY: http://secunia.com/advisories/13970/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: FireHOL 1.x http://secunia.com/product/4556/ DESCRIPTION: Sam Coute...

[SA13867] MySQL mysqlaccess Script Insecure Temporary File Creation

TITLE: MySQL mysqlaccess Script Insecure Temporary File Creation SECUNIA ADVISORY ID: SA13867 VERIFY ADVISORY: http://secunia.com/advisories/13867/ CRITICAL: Less critical IMPACT: Manipulation of data, Exposure of sensitive information, Privilege escalation WHERE: Local system SOFTWARE: MySQL 4.x...

MS Windows Improper Token Validation Local Exploit (working)

Exploit for unknown platform in category local exploits ============================================================ MS Windows Improper Token Validation Local Exploit working ============================================================ / Removed include "stdafx.h" / str0ke / include include defi...