166 matches found
The vulnerability of the Adobe AIR software platform allows a perpetrator to increase the execution priority of a process from low to medium.
The vulnerability of the Adobe AIR software platform is related to deficiencies in access control for certain functions. Exploiting this vulnerability allows a malicious actor to increase the execution priority of processes from low to medium...
jBPM: BPMN2 file processing XXE in Process Execution
It was discovered that the jBPM runtime performed expansion of external parameter entities while executing BPMN2 files. A remote attacker could use this flaw to read files accessible to the user running the application server, and potentially perform other more advanced XML eXternal Entity XXE...
Trove: potential leak of passwords into log files
The processutils.execute function in OpenStack oslo-incubator, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 allows local users to obtain passwords from commands that cause a ProcessExecutionError by reading the log...
Trove: potential leak of passwords into log files
The processutils.execute function in OpenStack oslo-incubator, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 allows local users to obtain passwords from commands that cause a ProcessExecutionError by reading the log...
Trove: potential leak of passwords into log files
The processutils.execute function in OpenStack oslo-incubator, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 allows local users to obtain passwords from commands that cause a ProcessExecutionError by reading the log...
Trove: potential leak of passwords into log files
The processutils.execute function in OpenStack oslo-incubator, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 allows local users to obtain passwords from commands that cause a ProcessExecutionError by reading the log...
DEBIAN-CVE-2014-7230
The processutils.execute function in OpenStack oslo-incubator, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 allows local users to obtain passwords from commands that cause a ProcessExecutionError by reading the log...
UBUNTU-CVE-2014-7230
The processutils.execute function in OpenStack oslo-incubator, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 allows local users to obtain passwords from commands that cause a ProcessExecutionError by reading the log...
CuteNews 1.4.6 editnews Module doeditnews Action Admin Moderation Bypass
No description provided by source. source: http://www.securityfocus.com/bid/36971/info CuteNews and UTF-8 CuteNews are prone to multiple vulnerabilities, including cross-site scripting, HTML-injection, information-disclosure, arbitrary-script-injection, and security-bypass issues. Note that...
[SECURITY] Fedora 18 Update: php-symfony2-Process-2.2.10-1.fc18
The Process Component executes commands in sub-processes...
Windows Manage Reflective DLL Injection Module
This module will inject a specified reflective DLL into the memory of a process, new or existing. If arguments are specified, they are passed to the DllMain entry point as the lpvReserved 3rd parameter. To read output from the injected process, set PID to zero and WAIT to non-zero. Make sure the...
Nmap NSE: SMB psexec
This script attempts to implement remote process execution, allowing a user to run a series of programs on a remote machine and read the output. This is a wrapper on the Nmap Security Scanner's http://nmap.org smb-psexec.nse. OpenVAS Vulnerability Test $Id: gbnmapsmbpsexec.nasl 7006 2017-08-25...
ORACLE Business Process Management (Process Administrator) 5.7-6.0-10.3 - Cross-Site Scripting
ORACLE Business Process Management Process Administrator 5.7-6.0-10.3 - Cross-Site Scripting |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // //...
smb-psexec NSE Script
Implements remote process execution similar to the Sysinternals' psexec tool, allowing a user to run a series of programs on a remote machine and read the output. This is great for gathering information about servers, running the same tool on a range of system, or even installing a backdoor on a...
Oracle Application Server BPEL Module Cross Site Scripting (CVE-2008-4014)
Oracle Application Server is a multi-platform solution for developing and deploying enterprise applications and web sites. The server ships with several additional components that extend its functionality. BPEL Business Process Execution Language is an XML based language used for describing...
MediaWiki 'IP'参数远程文件包含漏洞
BUGTRAQ: 9057 MediaWiki没有充分过滤用户提交的URI参数,远程攻击者可以利用这个漏洞包含远程服务器上的恶意文件,以WEB权限执行任意代码。 问题应该是对MediaWiki的'IP'参数缺少充分过滤,包含文件可被攻击者任意指令,如果指定远程服务器的恶意PHP文件,可导致以WEB进程权限执行。 MediaWiki-stable 20030829/20031107 临时解决方法: 如果您不能立刻安装补丁或者升级,建议您采取以下措施以降低威胁: 修改php.ini配置文件,关闭'allowurlfopen'和'registerglobals'选项。 厂商补丁:...
Lhaca文件档未明堆栈缓冲区溢出漏洞
Lhaca是一款解压缩软件。 Lhaca处理恶意LZH档文件存在未明堆栈缓冲区溢出,远程攻击者可以利用漏洞可能以应用程序进程权限执行任意指令。 目前没有详细漏洞细节提供。 Lhaca Lhaca 1.40 Lhaca Lhaca 1.20 目前没有解决方案提供: http://park8.wakwak.com/app/Lhaca/...
FileZilla多个格式串漏洞
FileZilla是一款免费的FTP客户端软件。 FileZilla处理用户名数据存在问题,远程攻击者可以利用漏洞进行格式串攻击,可能以进程权限执行任意指令。 如果用户名包含%字符,连接将会提示错误,而造成格式串攻击,可能以进程权限执行任意指令。 FileZilla 3.0 -beta4 FileZilla 3.0 -beta3 FileZilla 3.0 -beta2 FileZilla 3.0 -beta1 升级程序: FileZilla FileZilla 3.0 -beta1 FileZilla FileZilla3.0.0-beta5src.tar.bz2...
CenterICQ IJHook.CC远程缓冲区溢出漏洞
CenterICQ包含对LiveJournal的支持,如张贴日记,读取其他BLOG的RSS种子等其他功能。 CenterICQ存在缓冲区溢出问题,远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 问题存在于SOURCE/src/hooks/ljhook.cc文件中: char buf512; ... iffindfriendof.begin, friendof.end, in-first == friendof.end friendof.pushbackin-first; if!foempty bd = string "http://" +...
Phrack55:Klog
Rewrite pointer to memory window ------- Phrack Magazine --- Vol. 9 | Issue 55 --- 09.09.99 --- 08 of 19 ------------------------ Rewrite pointer to memory window -------- klog ---- Introduction If buffers can be overflowed, then by overwriting critical data, stored in the address space of the...