Directory traversal

Directory traversal vulnerability in webFileBrowser.php in Web File Browser 0.4b14 allows remote authenticated users to read arbitrary files via a ..%2f encoded dot dot in the file parameter in a download action...

CVE-2011-4800

Directory traversal vulnerability in Serv-U FTP Server before 11.1.0.5 allows remote authenticated users to read and write arbitrary files, and list and create arbitrary directories, via a "..:/" dot dot colon forward slash in the 1 list, 2 put, or 3 get commands...

CVE-2011-4596

Multiple directory traversal vulnerabilities in OpenStack Nova before 2011.3.1, when the EC2 API and the S3/RegisterImage image-registration method are enabled, allow remote authenticated users to overwrite arbitrary files via a crafted 1 tarball or 2 manifest...

(krb5kdc): NULL pointer dereference in the TGS handling (MITKRB5-SA-2011-007)

The processtgsreq function in dotgsreq.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.9 through 1.9.2 allows remote authenticated users to cause a denial of service NULL pointer dereference and daemon crash via a crafted TGS request that triggers an error other than the...

CVE-2011-4554

One Click Orgs before 1.2.3 allows remote authenticated users to trigger crafted SMTP traffic via 1 " double quote and newline characters in an org name or 2 " double quote characters in an e-mail address, related to a "2nd Order SMTP Injection" issue...

CVE-2011-4555

One Click Orgs before 1.2.3 does not require unique e-mail addresses for user accounts, which allows remote authenticated users to cause a denial of service login disruption or spoof votes or comments by selecting a conflicting e-mail address...

Code injection

One Click Orgs before 1.2.3 does not require unique e-mail addresses for user accounts, which allows remote authenticated users to cause a denial of service login disruption or spoof votes or comments by selecting a conflicting e-mail address...

Sql injection

One Click Orgs before 1.2.3 allows remote authenticated users to trigger crafted SMTP traffic via 1 " double quote and newline characters in an org name or 2 " double quote characters in an e-mail address, related to a "2nd Order SMTP Injection" issue...

CVE-2011-4555

One Click Orgs before 1.2.3 does not require unique e-mail addresses for user accounts, which allows remote authenticated users to cause a denial of service login disruption or spoof votes or comments by selecting a conflicting e-mail address...

CVE-2011-4073

Use-after-free vulnerability in the cryptographic helper handler functionality in Openswan 2.3.0 through 2.6.36 allows remote authenticated users to cause a denial of service pluto IKE daemon crash via vectors related to the 1 quickoutI1continue and 2 quickoutI1 functions...

CVE-2011-4073

Openswan pluto IKE daemon (versions 2.3.0–2.6.36) is affected by a use-after-free in the cryptographic helper handler. This remote authenticated vulnerability can crash the daemon (DoS) via vectors in quick_outI1_continue and quick_outI1. A patch exists in Openswan 2.6.37+; upgrade to mitigate. I...

CVE-2010-5024

SQL injection vulnerability in manage/adduser.php in CuteSITE CMS 1.2.3 and 1.5.0 allows remote authenticated users, with Read privileges, to execute arbitrary SQL commands via the userid parameter. NOTE: some of these details are obtained from third party information...

Design/Logic Flaw

The BlackBerry Collaboration Service in Research In Motion RIM BlackBerry Enterprise Server BES 5.0.3 through MR4 for Microsoft Exchange and Lotus Domino allows remote authenticated users to log into arbitrary user accounts associated with the same organization, and send messages, read messages,...

X.org: multiple GLX input sanitization flaws

The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service server crash and possibly execute arbitrary code via 1 a crafted request that triggers a client swap in glx/glxcmdsswap.c; or 2 a crafted length or 3 a negative value in the screen field in a...

X.org: multiple GLX input sanitization flaws

The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service server crash and possibly execute arbitrary code via 1 a crafted request that triggers a client swap in glx/glxcmdsswap.c; or 2 a crafted length or 3 a negative value in the screen field in a...

PT-2011-4376 · Cisco · Cisco Asa +1

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions 7.0 through 7.08.12 Cisco Adaptive Security Appliances ASA 5500 series devices versions 7.1 through 7.25.2 Cisco Adaptive Security Appliances ASA 5500 series devices versions...

OpenSSH < 4.9 'ForceCommand' Directive Bypass

According to its banner, the version of OpenSSH installed on the remote host is earlier than 4.9. It may allow a remote, authenticated user to bypass the 'sshdconfig' 'ForceCommand' directive by modifying the '.ssh/rc' session file. C Tenable, Inc. include"compat.inc"; if description scriptid4407...

Design/Logic Flaw

Unspecified vulnerability on HP NonStop Servers with software H06.x through H06.23.00 and J06.x through J06.12.00, when Samba is used, allows remote authenticated users to execute arbitrary code via unknown vectors...

CVE-2011-2411

Unspecified vulnerability on HP NonStop Servers with software H06.x through H06.23.00 and J06.x through J06.12.00, when Samba is used, allows remote authenticated users to execute arbitrary code via unknown vectors...

CVE-2011-2543

Buffer overflow in the cuil component in Cisco Telepresence System Integrator C Series 4.x before TC4.2.0 allows remote authenticated users to cause a denial of service endpoint reboot or process crash or possibly execute arbitrary code via a long location parameter to the getxml program, aka Bug...