Design/Logic Flaw

Untrusted search path vulnerability in the 1 "VST plugin with Python scripting" and 2 "VST plugin for writing score generators in Python" in Csound 5.08.2, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory,...

Java applets can be used to read sensitive information – Opera Security Advisories

Java applets can be used to read sensitive information – Opera Security Advisories OPCOM Team | December 16, 2008 Severity: Highly Severe Problem Description Once a Java applet has been cached, if a page can predict the cache path for that applet, it can load the applet from the cache, causing it...

CVE-2008-4394

Multiple untrusted search path vulnerabilities in Portage before 2.1.4.5 include the current working directory in the Python search path, which allows local users to execute arbitrary code via a modified Python module that is loaded by the 1 ys-apps/portage, 2 net-mail/fetchmail, 3 app-editors/le...

Gentoo Security Advisory GLSA 200410-26 (socat)

The remote host is missing updates announced in advisory GLSA 200410-26. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200410-26 (socat)

The remote host is missing updates announced in advisory GLSA 200410-26. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200412-09 (ncpfs)

The remote host is missing updates announced in advisory GLSA 200412-09. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200606-09 (Spamassassin)

The remote host is missing updates announced in advisory GLSA 200606-09. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Java Plugin same-origin-policy bypass

Unspecified vulnerability in the Java Plug-in for Sun JDK and JRE 6 Update 4 and earlier, and 5.0 Update 14 and earlier; and SDK and JRE 1.4.216 and earlier, and 1.3.121 and earlier; allows remote attackers to bypass the same origin policy and "execute local applications" via unknown vectors...

Java Plugin same-origin-policy bypass

Unspecified vulnerability in the Java Plug-in for Sun JDK and JRE 6 Update 4 and earlier, and 5.0 Update 14 and earlier; and SDK and JRE 1.4.216 and earlier, and 1.3.121 and earlier; allows remote attackers to bypass the same origin policy and "execute local applications" via unknown vectors...

CVE-2008-0302

Untrusted search path vulnerability in apt-listchanges.py in apt-listchanges before 2.82 allows local users to execute arbitrary code via a malicious apt-listchanges program in the current working directory...

[TKADV2007-001] Mac OS X TIOCSETD IOCTL Kernel Memory Corruption Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: Mac OS X TIOCSETD IOCTL Kernel Memory Corruption Vulnerability Advisory ID: TKADV2007-001 Revision: 1.0 Release Date: 2007/11/15 Last Modified: 2007/11/15 Date Reported: 2007/03/19 Author: Tobias Klein tk at trapkit.de Affected Software: Mac...

CVE-2007-4267

Stack-based buffer overflow in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted IOCTL request that adds an AppleTalk zone to a routing table...

PHP 5.x COM - Safe Mode disable_functions Bypass

PHP 5.x COM - Safe Mode disablefunctions Bypass sounds good //The windows version of PHP has built in support for this extension. You do not need to //load any additional extension in order to use these functions. //You are responsible for installing support for the various COM objects that you...

HP-UX PHSS_35164 : HP OpenView Storage Data Protector, Local Execution of Arbitrary Code (HPSBMA02190 SSRT071300 rev.1)

s700800 11.X OV DP5.50 PA-RISC patch - DA packet : A potential security vulnerability has been identified with HP OpenView Storage Data Protector running on HP-UX with PHSS35149 or PHSS35150 installed and Solaris with DPSOL00229 installed. The vulnerability could be exploited by a local user to...

HP-UX PHSS_35165 : HP OpenView Storage Data Protector, Local Execution of Arbitrary Code (HPSBMA02190 SSRT071300 rev.1)

s700800 11.23 OV DP5.50 IA-64 patch - DA packet : A potential security vulnerability has been identified with HP OpenView Storage Data Protector running on HP-UX with PHSS35149 or PHSS35150 installed and Solaris with DPSOL00229 installed. The vulnerability could be exploited by a local user to...

Yahoo! Messenger 8.1.0.421 - CYFT Object Arbitrary File Download

Yahoo! Messenger 8.1.0.421 - CYFT Object Arbitrary File Download ----------------------------------------------------------------------------- Yahoo! Messenger 8.1.0.421 CYFT Object ft60.dll Arbitrary File Download url: http://download.yahoo.com/dl/msgr8/us/ymsgr8us.exe Author: shinnai mail:...

[security bulletin] HPSBTU02211 SSRT071326 rev.1 - HP Tru64 UNIX Running the dop command, Local Execution of Arbitrary Code with Privilege Elevation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01036871 Version: 1 HPSBTU02211 SSRT071326 rev.1 - HP Tru64 UNIX Running the dop command, Local Execution of Arbitrary Code with Privilege Elevation NOTICE: The information in this Security...

[security bulletin] HPSBMA02197 SSRT061285 rev.1 - HP-UX Running HP Power Manager Remote Agent (RA), Local Execution of Arbitrary Code with Root Privileges

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c00819543 Version: 1 HPSBMA02197 SSRT061285 rev.1 - HP-UX Running HP Power Manager Remote Agent RA, Local Execution of Arbitrary Code with Root Privileges NOTICE: The information in this Security...

CVE-2007-1400

Plash permits sandboxed processes to open /dev/tty, which allows local users to escape sandbox restrictions and execute arbitrary commands by sending characters to a shell process on the same termimal via the TIOCSTI ioctl...

[security bulletin] HPSBMA02190 SSRT071300 rev.1 - HP OpenView Storage Data Protector, Local Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c00862204 Version: 1 HPSBMA02190 SSRT071300 rev.1 - HP OpenView Storage Data Protector, Local Execution of Arbitrary Code NOTICE: The information in this Security Bulletin should be acted upon as...