CVE-2010-3851

libguestfs before 1.5.23, as used in virt-v2v, virt-inspector 1.5.3 and earlier, and possibly other products, when a raw-format disk image is used, allows local guest OS administrators to read files from the host via a crafted 1 qcow2, 2 VMDK, or 3 VDI header, related to lack of support for a dis...

IPSwitch IMAP Server 9.20 Overflow

/ Ipsbitch.cpp vs Ipswitch IMAP Tested on: Windows 2000 SP4 Ref: CVE-2007-2795 Author: Dominic Chell Found this half written on a VM so decided to finish it. Payload adds a local admin account USER=r00t PASS=r00tr00t!! / include "stdafx.h" include include include include include "winsock2.h" prag...

CVE-2007-5848

Buffer overflow in CUPS in Apple Mac OS X 10.4.11 allows local admin users to execute arbitrary code via a crafted URI to the CUPS service...

DEBIAN-CVE-2007-5848

Buffer overflow in CUPS in Apple Mac OS X 10.4.11 allows local admin users to execute arbitrary code via a crafted URI to the CUPS service...

CVE-2007-5848

Buffer overflow in CUPS in Apple Mac OS X 10.4.11 allows local admin users to execute arbitrary code via a crafted URI to the CUPS service...

Code injection

The Disk Mount scanner in Symantec AntiVirus for Macintosh 9.x and 10.x, Norton AntiVirus for Macintosh 10.0 and 10.1, and Norton Internet Security for Macintosh 3.x, uses a directory with weak permissions group writable, which allows local admin users to gain root privileges by replacing...

CVE-2007-5829

The CVE-2007-5829 entry concerns the Disk Mount scanner in Symantec AntiVirus for Macintosh (9.x/10.x), Norton AntiVirus for Macintosh (10.0/10.1), and Norton Internet Security for Macintosh (3.x). A weak-permission directory (group-writable) is exploited by a local admin to replace unspecified f...

CVE-2007-5829

The Disk Mount scanner in Symantec AntiVirus for Macintosh 9.x and 10.x, Norton AntiVirus for Macintosh 10.0 and 10.1, and Norton Internet Security for Macintosh 3.x, uses a directory with weak permissions group writable, which allows local admin users to gain root privileges by replacing...

CVE-2007-4390

The Command Line Interface CLI, aka Adonis Administration Console, on the BlueCat Networks Adonis DNS/DHCP appliance 5.0.2.8 allows local admin users to gain root privileges on the underlying operating system via shell metacharacters in a command...

CVE-2007-4390

The Command Line Interface CLI, aka Adonis Administration Console, on the BlueCat Networks Adonis DNS/DHCP appliance 5.0.2.8 allows local admin users to gain root privileges on the underlying operating system via shell metacharacters in a command...

Uphotogallery Multiple Cross-Site Scripting Vulnerability

Uphotogallery Multiple Cross-Site Scripting Vulnerability Uphotogallery has been developed to run exclusively on web sites hosted on Windows Servers with Internet Information Server 4.0 or higher and ASP 3.0 installed. No other Platforms are supported. Uphotogallery supports both Microsoft Access...

CVE-2007-0409

BEA WebLogic 7.0 through 7.0 SP6, 8.1 through 8.1 SP4, and 9.0 initial release does not encrypt passwords stored in the JDBCDataSourceFactory MBean Properties, which allows local administrative users to read the cleartext password...

CVE-2007-0345

The 1 Activity Monitor.app/Contents/Resources/pmTool, 2 Keychain Access.app/Contents/Resources/kcproxy, and 3 ODBC Administrator.app/Contents/Resources/iodbcadmintool programs in /Applications/Utilities/ in Mac OS X 10.4.8 have weak permissions writable by admin group, which allows local admin...

CVE-2007-0345

The 1 Activity Monitor.app/Contents/Resources/pmTool, 2 Keychain Access.app/Contents/Resources/kcproxy, and 3 ODBC Administrator.app/Contents/Resources/iodbcadmintool programs in /Applications/Utilities/ in Mac OS X 10.4.8 have weak permissions writable by admin group, which allows local admin...

CVE-2007-0345

The CVE-2007-0345 description is supported by connected records: on Mac OS X 10.4.8, three utilities located in /Applications/Utilities (Activity Monitor.app/Contents/Resources/pmTool, Keychain Access.app/Contents/Resources/kcproxy, and ODBC Administrator.app/Contents/Resources/iodbcadmintool) ha...

CVE-2006-6815

Multiple cross-site scripting XSS vulnerabilities in DMXReady Secure Login Manager 1.0 allow remote authenticated administrators to inject arbitrary web script or HTML via unspecified parameters to 1 setpreferences.asp, 2 sendpasswordpreferences.asp, and 3 SecureLoginManager/list.asp in the...

CVE-2006-6816

Multiple SQL injection vulnerabilities in DMXReady Secure Login Manager 1.0 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to 1 setpreferences.asp, 2 sendpasswordpreferences.asp, and 3 SecureLoginManager/list.asp in the Local-Admin Panel; 4 the sent parameter ...

CVE-2006-6815

Multiple cross-site scripting XSS vulnerabilities in DMXReady Secure Login Manager 1.0 allow remote authenticated administrators to inject arbitrary web script or HTML via unspecified parameters to 1 setpreferences.asp, 2 sendpasswordpreferences.asp, and 3 SecureLoginManager/list.asp in the...

CVE-2006-3734

Multiple unspecified vulnerabilities in the Command Line Interface CLI for Cisco Security Monitoring, Analysis and Response System CS-MARS before 4.2.1, allow local CS-MARS administrators to execute arbitrary commands as root...

wmp_overflow.htm.txt

WMP Plugin EMBED Exploit // Windows Media Player Plug-In EMBED Overflow Universal Exploit MS06-006 // By Matthew Murphy [email protected] // // DISCLAIMER: // // This exploit code is intended only as a demonstration tool for // educational or testing purposes. It is not intended to be used for...