PT-2026-20278

Name of the Vulnerable Software and Affected Versions Slider Future versions up to and including 1.0.5 Description The Slider Future plugin for WordPress is susceptible to arbitrary file uploads because of a lack of file type validation within the slider future handle image upload function. This...

CVE-2019-12568

Stack-based overflow vulnerability in the logMess function in Open TFTP Server SP 1.66 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2018-10387 and CVE-2019-12567...

ALPINE-CVE-2019-12105

In Supervisor through 4.0.2, an unauthenticated user can read log files or restart a service. Note: The maintainer responded that the affected component, inethttpserver, is not enabled by default but if the user enables it and does not set a password, Supervisor logs a warning message. The...

CVE-2019-12105

In Supervisor through 4.0.2, an unauthenticated user can read log files or restart a service. Note: The maintainer responded that the affected component, inethttpserver, is not enabled by default but if the user enables it and does not set a password, Supervisor logs a warning message. The...

UBUNTU-CVE-2019-12105

DISPUTED In Supervisor through 4.0.2, an unauthenticated user can read log files or restart a service. Note: The maintainer responded that the affected component, inethttpserver, is not enabled by default but if the user enables it and does not set a password, Supervisor logs a warning message. T...

CVE-2019-12105

In Supervisor through 4.0.2, an unauthenticated user can read log files or restart a service. Note: The maintainer responded that the affected component, inethttpserver, is not enabled by default but if the user enables it and does not set a password, Supervisor logs a warning message. The...

SAP Adaptive Server Enterprise - DoS vulnerability

Application: SAP Adaptive Server Enterprise Versions Affected: SAP Adaptive Server Enterprise 16 Vendor URL: SAP Bug: Denial of Service Reported: 01.02.2016 Vendor response: 02.02.2016 Date of Public Advisory: 12.07.2016 Reference: SAP Security Note 2330839 Author: Vahgan Vardanyan ERPScan...

SCO Open Server 5.0.5 cancel Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/702/info There is a buffer overflow vulnerability in /opt/K/SCO/Unix/5.0.5Eb/.softmgmt/var/usr/bin/cancel. It is important to know that the overflows are not in /usr/bin/cancel or /usr/lpd/remote/cancel. The consequence o...

SCO Open Server 5.0.6 lpusers Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2557/info SCO OpenServer 5.0.6 and possibly earlier versions ships with several suid bin executables used in printer administration and related tasks. This includes lpusers, a component used to set the queue priority of...

SCO Open Server 5.0.5 X Library Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/638/info A buffer overflow vulnerability in the shared X library may allows local users to obtain higher privileges. Any setuid applications linked against the library are possibly vulnerable. The vulnerability is in the...

SCO Open Server <= 5.0.4 POP Server Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/156/info A buffer overflow exists in the pop server shipped with Santa Cruz Operation, Inc's SCO Open Server. By presenting a buffer of sufficient length to the pop server, an attacker can overwrite the return address on...

SCO Open Server <= 5.0.5 'userOsa' symlink Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/701/info Under certain versions of SCO OpenServer there exists a symlink vulnerability which can be exploited to overwrite any file which is group writable by the 'auth' group. The problem in particular is in the the...

Windows 3.11/95/NT 4.0/NT 3.5.1 "Out Of Band" Data Denial of Service (3)

No description provided by source. source: http://www.securityfocus.com/bid/2010/info Older versions of Microsoft Windows 95, Windows for Workgroups 3.11, Windows NT up to and including 4.0, as well as SCO Open Server 5.0, have a vulnerability relating to the way they handle TCP/IP Out of Band...

SCO Open Server 5.0.5 X Library Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/638/info A buffer overflow vulnerability in the shared X library may allows local users to obtain higher privileges. Any setuid applications linked against the library are possibly vulnerable. The vulnerability is in the...

Windows 3.11/95/NT 4.0/NT 3.5.1 "Out Of Band" Data Denial of Service (2)

No description provided by source. source: http://www.securityfocus.com/bid/2010/info Older versions of Microsoft Windows 95, Windows for Workgroups 3.11, Windows NT up to and including 4.0, as well as SCO Open Server 5.0, have a vulnerability relating to the way they handle TCP/IP Out of Band...

SCO Open Server <= 5.0.5 XBase Buffer Overflow Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/479/info The XBase package that ships with SCO OpenServer 5.0. is vulnerable to several buffer overflow attacks in many different XBase tools. The tools that are installed setuid root allow local users to gain superuser...

Sybase Open Server Null Byte Stack Memory Corruption

A remote code execution vulnerability has been reported in Sybase Open Server. The vulnerability is due to an error in the processing of malformed login packets by the server. A remote attacker may exploit this vulnerability by sending a specially crafted packet to an affected Sybase server...

News Server (NNTP) Anonymous Read Access

The remote NNTP server seems to be open to outsiders. Some people like open NNTP servers as they allow one to read Usenet news articles anonymously. Unwanted connections could waste your bandwidth. Note that it is very common for NNTP servers to use IP-based authentication so this may be a false...

BMC Patrol BGS_SDservice.EXE内存破坏漏洞

BMC Patrol是一款用于提供数据库系统监控的解决方案。 BMC Patrol PerformAgent服务存在内存破坏问题，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 bgssdservice.exe默认监听TCP 10128端口，由于不正确解析发送给此服务的XDR数据，攻击者可以操作进行内存拷贝操作的参数，而导致堆栈破坏，包括SEH指针，可造成任意指令执行。 BMC Software Patrol 3.5 BMC Software Patrol 3.4.11 BMC Software Patrol 3.3 BMC Software Patrol 3.2.7 BMC...

SCO Open Server 5.0.6 - recon Buffer Overflow

source: https://www.securityfocus.com/bid/2560/info SCO OpenServer 5.0.6 and possibly earlier versions ships with a suid 'bin' executable called 'recon'. 'recon' is used to buffer and forward escape sequences from a user's input to timing-sensitive applications. 'recon' contains a locally...