2293 matches found
CVE-2008-6499
security/xamppsecurity.php in XAMPP 1.6.8 performs an extract operation on the SERVER superglobal array, which allows remote attackers to spoof critical variables, as demonstrated by setting the REMOTEADDR variable to 127.0.0.1...
RedHat Security Advisory RHSA-2009:0341
The remote host is missing updates announced in advisory RHSA-2009:0341. cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and Dict servers, using any of the supported protocols. cURL is designed to work without user interaction or any kind of interactivity. David Kierznowski...
RedHat Security Advisory RHSA-2009:0341
The remote host is missing updates announced in advisory RHSA-2009:0341. cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and Dict servers, using any of the supported protocols. cURL is designed to work without user interaction or any kind of interactivity. David Kierznowski...
RHEL 2.1 / 3 / 4 / 5 : curl (RHSA-2009:0341)
Updated curl packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1, 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and Dict servers,...
GeoVision ActiveX File Corruption
function sleepn var now = new Date; var exitTime = now.getTime + n1000; while true now = new Date; if now.getTime exitTime return; param name="AutoLogin" v...
Integer overflow
Integer overflow in the SMB component in Apple Mac OS X 10.5.6 allows remote SMB servers to cause a denial of service system shutdown or execute arbitrary code via a crafted SMB file system that triggers a heap-based buffer overflow...
Via ssh to perform a remote server on the command-vulnerability warning-the black bar safety net
Via SSH to perform a remote server on command, very good very powerful, much more convenient. 1. for i in 3 2 3 5 1 5 ; do ssh [email protected].$ i ps auxH|grep httpd|wc-l ; done; 2. You can list 1 9 2. 1 6 8. 1. 3,23 ,5 ,1 5,four servers on the httpd threads; you can also use1..2 5 0 in order to...
CVE-2008-5329
The CVE-2008-5329 issue affects ClearQuest Web in IBM Rational ClearQuest MultiSite before 7.1 . An attacker could direct a client’s submissions and changes to an arbitrary database by configuring multiple comma-separated server identifiers on the JTLRMIREGISTRYSERVERS line in a jtl.properties fi...
CVE-2008-4776
libgadu before 1.8.2 allows remote servers to cause a denial of service crash via a contact description with a large length, which triggers a buffer over-read...
Buffer overflow
libgadu before 1.8.2 allows remote servers to cause a denial of service crash via a contact description with a large length, which triggers a buffer over-read...
WEBalbum Local File Include Vulnerability
The remote web server is running WEBalbum which is affected by a local file include vulnerability. SPDX-FileCopyrightText: 2008 Josh Zlatin-Amishav Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
IBM DB2 8 < Fix Pack 17 Multiple Vulnerabilities
According to its version, the installation of IBM DB2 8 running on the remote host is affected by multiple issues : - By sending malicious DB2 UDB v7 client CONNECT/DETACH requests it may be possible to crash the remote DB2 server. IZ08134 - Failure to switch the owner of the 'DB2FMP' process may...
CVE-2008-3746
CVE-2008-3746 - neon vulnerability details (supported by connected docs) Affected software: neon 0.28.0 through 0.28.2. The issue is described across multiple advisories as a denial of service caused by a NULL pointer dereference in the digest authentication code, related to Digest authentication...
phpizabi-traverse.txt
PHPizabi v0.848b traversal file access Vendor url:http://www.phpizabi.net/ Advisore:http://lostmon.blogspot.com/2008/08/ phpizabi-v0848b-traversal-file-access.html Vendor notify:no exploit available:yes Description By vendor page: PHPizabi is one of the most powerful social networking platforms o...
[SECURITY] Fedora 9 Update: newsx-1.6-9.fc9
Newsx is an NNTP client that will connect to a remote NNTP server and post outgoing news articles batched by the news system e.g. INN, as well as fetch incoming articles...
[SECURITY] Fedora 8 Update: newsx-1.6-8.fc8
Newsx is an NNTP client that will connect to a remote NNTP server and post outgoing news articles batched by the news system e.g. INN, as well as fetch incoming articles...
Mozilla Foundation Security Advisory 2008-27
Mozilla Foundation Security Advisory 2008-27 Title: Arbitrary file upload via originalTarget and DOM Range Impact: High Announced: July 1, 2008 Reporter: Claudio Santambrogio Products: Firefox, SeaMonkey Fixed in: Firefox 2.0.0.15 SeaMonkey 1.1.10 Description Opera developer Claudio Santambrogio...
Arbitrary file upload via originalTarget and DOM Range — Mozilla
Opera Software reported a vulnerability which allows malicious content to force the browser into uploading local files to the remote server. This could be used by an attacker to steal files from known locations on a victim's computer...
CVE-2008-2822
Multiple directory traversal vulnerabilities in the FTP client in 3D-FTP Client 8.01 8.0 build 1 allow remote FTP servers to create or overwrite arbitrary files via a .. dot dot in a response to a 1 LIST or 2 MLSD command...
CVE-2008-2795
Directory traversal vulnerability in the FTP and SFTP clients in IDM Computer Solutions Inc UltraEdit 14.00b allows remote FTP servers to create or overwrite arbitrary files via a .. dot dot or a ..\ dot dot backslash in a response to a LIST command...