32 matches found
The vulnerability of the Dell GeoDrive local file system’s interface arises due to an incorrect path limitation for the restricted access directory. This allows attackers to gain unauthorized access and perform unauthorized file deletion operations.
The vulnerability of the Dell GeoDrive local file system exists due to an incorrect path name limitation for the restricted access directory. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain unauthorized access to delete files...
The vulnerability of the Cisco IOx software platform arises from an incorrect limitation on the path name to the restricted access directory. This allows a perpetrator to execute arbitrary code or carry out cross-site scripting attacks.
The vulnerability of the Cisco IOx software platform exists due to an incorrect limitation on the path name to the restricted access directory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or perform XSS attacks remotely...
Description of the security update for SharePoint Server 2019: May 11, 2021 (KB5001916)
Description of the security update for SharePoint Server 2019: May 11, 2021 KB5001916 Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability and a Microsoft SharePoint spoofing vulnerability and information disclosure vulnerability. To learn more...
CVE-2020-29482
CVE-2020-29482 affects Xen up to 4.14.x via oxenstored. A guest can create xenstore paths in its own namespace that exceed the pathname limit, because management tools must use absolute paths and oxenstored enforces a limit on the client-specified path. This can cause some management tools and de...
The vulnerability in the Adobe Experience Design (Adobe XD) interface development software exists due to an incorrect path name limitation for the restricted access catalog. This allows a malicious actor to execute arbitrary code.
The vulnerability of the Adobe Experience Design Adobe XD interface development software exists due to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code in the context of the current user...
The vulnerability of the IcedTea-Web plugin, related to an incorrect limitation on the path name to the restricted access catalog, allows a hacker to write arbitrary files to the device’s file system.
The vulnerability of the IcedTea-Web plugin is related to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability allows a malicious actor to write arbitrary files to the device’s file system using a specially crafted file in formats: .tar, .jar, .war,...
The vulnerability of the extractDir function in the Zip4j library, which allows a hacker to execute arbitrary code.
The vulnerability of the extractDir function in the Zip4j library, which is used for working with zip files, is related to an incorrect limitation on the path name of the directory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute arbitrary code using a...
The vulnerability of the extractDir function in the Node.js library for working with zip files (Adm-zip), which allows a hacker to execute arbitrary code.
The vulnerability of the extractDir function in the Node.js library for working with zip files in the Adm-zip library is related to an incorrect limitation on the path name of the directory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using a specially...
The vulnerability of the iOS operating system allows a perpetrator to gain access to arbitrary objects in the file system.
The vulnerability of the Air Traffic component in the iOS operating system exists due to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to arbitrary objects in the file system...
Microsoft Windows 2000/NT 4 NTFS File Hiding Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3989/info There exists a condition in Microsoft Windows operating systems using NTFS that may allow for files to be hidden. Though the NTFS filesystem allows for a 32000 character path, Microsoft Windows operating systems...
quagga: BGP session reset by processing BGP Update message with malformed AS-path attributes
bgpd in Quagga before 0.99.18 allows remote attackers to cause a denial of service session reset via a malformed ASPATHLIMIT path attribute...
Microsoft Windows NT 4.0/2000 - NTFS File Hiding
source: https://www.securityfocus.com/bid/3989/info There exists a condition in Microsoft Windows operating systems using NTFS that may allow for files to be hidden. Though the NTFS filesystem allows for a 32000 character path, Microsoft Windows operating systems NT4, 2000 and XP enforce a 256...