Многочисленные ошибки в BPM Studio (multiple bugs)

Доступ к специальным устройствам, обратный путь в каталогах...

AtheOS: escaping from a chroot jail

------- AtheOS ------- AtheOS is a free desktop operating system under the GPL license. AtheOS currently run on Intel, AMD and other compatible processors and support the Intel Multi Processor architecture. AtheOS home page is : http://www.atheos.cx ------- Vulnerability ------- A chroot call is...

Обратный путь в директориях Comprehensive Web Programming API (directory traversal)

Метод GetRelativePath не проверяет относительные пути...

Important: Red Hat Security Advisory: : Updated man package fixing GID security problems.

Updated man packages fixing a local GID man exploit and a potential GID man to root exploit, as well as a problem with the man paths of Red Hat Linux 5.x and 6.x. Users could gain access to the GID man by overrunning a buffer in the ultimatesource function. Users with GID man could get root acces...

Broker Ftp Server 5.0 Vulnerability

Vulnerability: users can break out of their root directory and list directories. Depending on the priv. you have other commands like delete maybe executed outside of the home. directory. e:crap was used as homedir. deleting files in e:crap is enabled Detail: Problem: Again relative paths. dir:...

Vulnerability in SlimServe FTPd

----- Begin Hush Signed Message from [email protected] ----- Vulnerability in SlimServe FTPd Overview SlimServe FTPd v1.0 is an ftp server available from http://www.whitsoftdev.com and http://www.download.com. A vulnerability exists which allows an attacker to break out of the ftp root using...

Vulnerability in Resin Webserver

----- Begin Hush Signed Message from [email protected] ----- Vulnerability in Resin Webserver Overview Resin 1.2.2 is a webserver available from http://www.caucho.com and http://java.tucows.com. A vulnerability exists which allows a remote user to break out of the web root using relative path...

Vulnerability in Picserver

Vulnerability in Picserver Overview Picserver is a specialized webserver available from http://www.informs.com and http://www.zdnet.com. A vulnerability exists which allows a remote user to break out of the web root using relative paths ie: '..', '...'. Details http://localhost:7000/../file outsi...

Дырка в Apache + PHP3 под Windows

Проблема обратного пути в директориях при использовании спец-символов...

Hassan Consulting Shopping Cart 1.18 - Directory Traversal

Hassan Consulting Shopping Cart 1.18 - Directory Traversal source: https://www.securityfocus.com/bid/1777/info The $page variable in Hassan Consulting Shopping Cart does not properly check for insecure relative paths such as the double dot "..". Therefore, requesting the following URL will displa...

YaBB 9.1.2000 - Arbitrary File Read

source: https://www.securityfocus.com/bid/1668/info YaBB.pl, a web-based bulletin board script, stores board postings in numbered text files. The numbered file name is specified in the call to YaBB.pl in the variable num=. Before retrieving the file, YaBB will append a .txt extension to . Due to...

Очередной способ получить путь к файлам через FrontPage Server

Запросив у shtml.exe из каталога vtibin несуществующий файл можно получить путь к этому файлу...

formhandler.cgi.txt

From: Mnemonix Subject: FormHandler.cgi FormHandler.cgi available from http://www.cgi-perl.com/programs/FormHandler uses hard coded physical paths for templates etc so it's possible to get sensitive files like /etc/passwd by modifying a site's f orm and submitting it. Cheers, David Litchfield...

ms.office.ole.samples.txt

http://www.macintouch.com/o98securitysamp.html Office 98 Security Hole: Samples Microsoft/Compaq Samples Reader Experiences In researching the long-standing Microsoft Office/OLE security holes, we took a look at some of Microsoft's own Word documents, published on its web site long after the...

Security update 1970-01-01

...

Internet Explorer help

None None...