CVE-2005-2816

CVE-2005-2816 describes a Cross-Site Scripting (XSS) vulnerability in Greymatter (Greymatter gm.cgi). The issue occurs when a user submits a post comment that is logged and later read via the administrator’s View Control Panel Log, where the log handling fails to sanitize the injected script/HTML...

CVE-2005-2816

Cross-site scripting XSS vulnerability in Greymatter allows remote attackers to inject arbitrary web script or HTML via a post comment, which is recorded in a log file but not properly handled when the administrator uses "View Control Panel Log" to read the log file...

CVE-2005-2766

Symantec AntiVirus Corporate Edition 9.0.1.x and 9.0.4.x, and possibly other versions, when obtaining updates from an internal LiveUpdate server, stores sensitive information in cleartext in the Log.Liveupdate log file, which allows attackers to obtain the username and password to the internal...

CVE-2005-2766

The CVE affects Symantec AntiVirus Corporate Edition 9.0.1.x and 9.0.4.x (and possibly other versions) where, during updates from an internal LiveUpdate server, the Log.Liveupdate file stores the LiveUpdate username and password in cleartext. This plaintext credential exposure could allow an atta...

smf105.txt

Simple Machine Forum 1-0-5 possibly prior versions user IP address / information disclosure software: site: http://www.simplemachines.org/ information disclosure: a user can choose an sumbit an avatar url like this: http://evilsite/image.php where image.php is a file like this: When forum users...

iDEFENSE Security Advisory 08.29.05: Adobe Version Cue VCNative Arbitrary File Overwrite Vulnerability

Adobe Version Cue VCNative Arbitrary File Overwrite Vulnerability iDEFENSE Security Advisory 08.29.05 www.idefense.com/application/poi/display?id=297&type=vulnerabilities August 29, 2005 I. BACKGROUND Adobe Version Cue is a software version tracking system for Adobe products distributed with Adob...

DEBIAN-CVE-2005-1856

The CD-burning feature in backup-manager 0.5.8 and earlier uses a fixed filename in a world-writable directory for logging, which allows local users to overwrite files via a symlink attack...

Adobe Version Cue 1.0/1.0.1 (OSX) - Local Privilege Escalation

!/usr/bin/perl Adobe Version Cue VCNativeOSX: local root exploit. by: vade79/v9 [email protected] fakehalo/realhalo Adobe Version Cue's VCNative program writes data to a log file in the current working directory while running as setuid root. the logfile is formated as /VCNative-.log, which is easily...

WebWizXSS.txt

Bug : XSS in Web Wiz Forums cookie stealing Bug founded by : [email protected] Comment : I found this bug in +- 1 hour after some bitch asked me to help him, but he haven't do shit LOL Greets to : HaCkZaTaN, Johnnie Walker, Morinex, j0ker, Woopie, siLgi, bcuzZ. Big Fuck to : cobradrive, 0x1fe er...

PHPMyFAQ 1.5.1 - Logs Unauthorized Access

PHPMyFAQ 1.5.1 - Logs Unauthorized Access source: https://www.securityfocus.com/bid/14930/info PHPMyFAQ is prone to an unauthorized access vulnerability. A remote attacker can exploit this vulnerability to view the application log file. This vulnerability could lead to the disclosure of various...

CVE-2004-2397

The CVE affects Blue Coat Security Gateway OS (Blue Coat) web-based Management Console. When importing a private key, the console stores the key and its passphrase in plaintext in a log file, enabling an attacker to extract digital certificates. Affected versions: OS 3.0–3.1.3.13 and 3.2.1. Root ...

CVE-2004-2397

The web-based Management Console in Blue Coat Security Gateway OS 3.0 through 3.1.3.13 and 3.2.1, when importing a private key, stores the key and its passphrase in plaintext in a log file, which allows attackers to steal digital certificates...

CVE-2002-2103

CVE-2002-2103 affects Apache before 1.3.24. When writing to the log file, Apache may record a spoofed hostname from reverse DNS for an IP address, even if a double-reverse lookup fails, allowing remote attackers to hide the original source of activities. The provided documents do not include expl...

netquery31.txt

Netquery 3.1 remote commands execution, cross site scripting, information disclosure poc exploit software: author site: http://www.virtech.org/tools/ a user can execute commands on target system by PING panel, if enabled like often happens, using pipe char on "Ping IP Address or Host Name" input...

CVE-2002-2051

The processorweb plugin for ModLogAn 0.5.0 through 0.7.11, when used with the splitby option, allows local users to overwrite arbitrary files via a symlink attack on files specified as hostnames in a log file...

ppxp ppp dialup client privilege escalation

Elevated privilieges are not dropped than external aplication is executed or log file is open...

CVE-2002-1869

Affected software: Heysoft EventSave 5.1–5.2 and Heysoft EventSave+ 5.1–5.2. Vulnerability: the log-writing check is not performed, allowing an attacker to disrupt event recording by opening the log file (e.g., with Event Viewer). Root cause (as described in connected sources): absence of a valid...

CVE-2002-1869

Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log file can be written to, which allows attackers to prevent events from being recorded by opening the log file using an application such as Microsoft's Event Viewer...

[SA15743] Legal Case Management System Log File Disclosure

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

CVE-2002-1695

CVE-2002-1695 affects Norton Internet Security 2001. The issue stems from the product opening log files with FILE_SHARE_READ and FILE_SHARE_WRITE, which could allow remote attackers to modify log contents while Norton Internet Security is running. The provided documents do not include a remediati...