851 matches found
CVE-2005-4278
CVE-2005-4278 is an Untrusted search path vulnerability affecting Perl prior to 5.8.7-r1 on Gentoo Linux. Local users in the portage group can gain privileges by placing a malicious shared object in the Portage temporary build directory, which is in RUNPATH. Connected advisories (GLSA 200510-14, ...
CVE-2005-4068
Unspecified "absolute path vulnerability" in umountall in IBM AIX 5.1 through 5.3 allows local users to cause unknown impact via unknown vectors...
CVE-2005-4068
The CVE-2005-4068 entry concerns an unspecified absolute path vulnerability in the AIX utility umountall, affecting IBM AIX 5.1–5.3 with local-access implications (exact impact and vectors not disclosed in the provided documents). Connected sources identify vendor patches related to bos.rte.files...
CVE-2005-4068
Unspecified "absolute path vulnerability" in umountall in IBM AIX 5.1 through 5.3 allows local users to cause unknown impact via unknown vectors...
CVE-2005-2938
CVE-2005-2938 affects Apple iTunes for Windows (iTunesHelper.exe) prior to iTunes 6. The vulnerability is an unquoted Windows search path in iTunesHelper.exe, which could allow a local user to gain privileges by placing a malicious C:\program.exe. Affected versions include iTunes 4.7.1.30 and iTu...
CVE-2005-3270
The CVE-2005-3270 entry concerns Symantec Norton AntiVirus 9.0.3 and a DiskMountNotify component. The vulnerability is an untrusted search path that allows local users to gain privileges by modifying the PATH to reference a malicious (1) ps or (2) grep file. This is a local privilege escalation i...
Siteframe siteframe.php LOCAL_PATH Parameter Remote File Inclusion
The remote host is running Siteframe, an open source content management system using PHP and MySQL. The installed version of Siteframe does not properly sanitize the 'LOCALPATH' parameter of the 'siteframe.php' script before using it to include files. By leveraging this flaw, an attacker is able ...
CVE-2005-1185
CVE-2005-1185 describes an unquoted Windows search path vulnerability in MusicMatch Jukebox versions up to 10.00.2047. Local users can gain privileges by placing a malicious C:\program.exe that is executed by MMFWLaunch.exe when it runs launch.exe. Affected software/function: MusicMatch Jukebox (...
PY Software Active Webcam 4.35.5 - WebServer Multiple Vulnerabilities
PY Software Active Webcam 4.35.5 - WebServer Multiple Vulnerabilities source: https://www.securityfocus.com/bid/12778/info Active Webcam webserver is reported prone to multiple vulnerabilities. The following individual issues are reported: The first issue, a denial of service is reported to...
[Full-Disclosure] iDEFENSE Security Advisory 12.20.04: IBM AIX invscout Local Command Execution Vulnerability
IBM AIX invscout Local Command Execution Vulnerability iDEFENSE Security Advisory 12.20.04 www.idefense.com/application/poi/display?id=171&type=vulnerabilities December 20, 2004 I. BACKGROUND The invscout program is a setuid root application, installed by default under newer versions of IBM AIX,...
zip -- long path buffer overflow
A HexView security advisory reports: When zip performs recursive folder compression, it does not check for the length of resulting path. If the path is too long, a buffer overflow occurs leading to stack corruption and segmentation fault. It is possible to exploit this vulnerability by embedding ...
CVE-1999-1217
The PATH in Windows NT includes the current working directory ., which could allow local users to gain privileges by placing Trojan horse programs with the same name as commonly used system programs into certain directories...
PHPOutsourcing Zorum 3.4 - Full Path Disclosure
source: https://www.securityfocus.com/bid/8396/info A vulnerability has been reported in Zorum message board software that allows a remote attacker to send a malformed HTTP request resulting in a disclosure of the installation path. This issue may allow an attacker to gain knowledge of the file...
CVE-2002-1239
QNX Neutrino RTOS 6.2.0 uses the PATH environment variable to find and execute the cp program while operating at raised privileges, which allows local users to gain privileges by modifying the PATH to point to a malicious cp program...
iDEFENSE Security Advisory 11.08.02b: Non-Explicit Path Vulnerability in QNX Neutrino RTOS
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 11.08.02b: http://www.idefense.com/advisory/11.08.02b.txt Non-Explicit Path Vulnerability in QNX Neutrino RTOS November 8, 2002 I. BACKGROUND QNX Software Systems Ltd.'s Neutrino RTOS QNX is a real-time operating system...
Apache Httpd < 2.0.40 : Path vulnerability
Certain URIs would bypass security and allow users to invoke or access any file depending on the system configuration. Affects Windows, OS2, Netware and Cygwin platforms only...
ASI Oracle Security Alert: CHOWN Path Environment Variable Vulnerability
CHOWN Path Environment Variable Vulnerability For additional details, the official advisories from Oracle Corporation can be downloaded from: http://otn.oracle.com/deploy/security/pdf/dbsmpalert.pdf Summary: The vulnerability only affects Oracle 8.0.5 and 8.1.5. The dbsnmp file executes the CHOWN...
CVE-1999-1232
The CVE-1999-1232 entry concerns SGI IRIX 6.2, specifically the day5datacopier component. The vulnerability arises from an untrusted search path: a local user can influence PATH to point to a malicious cp program, enabling arbitrary command execution. Impact is local confidentiality, integrity, a...
CVE-2001-0389
IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to determine the real path of the server by directly calling the macro.d2w macro with a NOEXISTINGHTMLBLOCK argument...
RobTex Viking Server 1.0.7 - Relative Path Webroot Escaping
RobTex Viking Server 1.0.7 - Relative Path Webroot Escaping source: https://www.securityfocus.com/bid/2643/info The Viking Server is a freely available software package maintained and distributed by Robtex. The Viking Server provides multiple protocol service on Windows 95, 98, and NT systems. A...