Lucene search
K

1326 matches found

seebug.org
seebug.org
added 2007/05/11 12:0 a.m.59 views

MS Internet Explorer <= 7 Remote Arbitrary File Rewrite PoC (MS07-027)

No description provided by source. html title MS07-027 mdsauth.dll NMSA Session Description Object SaveAs control, arbitrary file modification /title body OBJECT id="target" classid="clsid:d4fe6227-1288-11d0-9097-00aa004254a0" /OBJECT script language="vbscript" //next script is converted to UTF16...

7.1AI score
Exploits0
0day.today
0day.today
added 2007/05/10 12:0 a.m.35 views

MS Internet Explorer <= 7 Remote Arbitrary File Rewrite PoC (MS07-027)

Exploit for unknown platform in category remote exploits ====================================================================== MS Internet Explorer MS07-027 mdsauth.dll NMSA Session Description Object SaveAs control, arbitrary file modification //next script is converted to UTF16...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2007/05/10 12:0 a.m.131 views

Microsoft Internet Explorer multiple security vulnerabilities

Multiple memory corruption on COM objects and HTML parsing, files rewrite...

9.3CVSS2.2AI score0.37366EPSS
Exploits0References3
exploitpack
exploitpack
added 2007/05/10 12:0 a.m.24 views

Microsoft Internet Explorer 7 - Arbitrary File Rewrite (MS07-027)

Microsoft Internet Explorer 7 - Arbitrary File Rewrite MS07-027 MS07-027 mdsauth.dll NMSA Session Description Object SaveAs control, arbitrary file modification //next script is converted to UTF16 target.SessionDescription="MS07-027 mdsauth.dll Proof of Concept exploit" target.SessionAuthor="Andr...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2007/05/10 12:0 a.m.82 views

Microsoft Internet Explorer 7 - Arbitrary File Rewrite (MS07-027)

MS07-027 mdsauth.dll NMSA Session Description Object SaveAs control, arbitrary file modification //next script is converted to UTF16 target.SessionDescription="MS07-027 mdsauth.dll Proof of Concept exploit" target.SessionAuthor="Andres Tarasco Acuna" target.SessionEmailContact="atarascoatgmail.co...

7AI score
Exploits0
NVD
NVD
added 2007/05/08 11:19 p.m.20 views

CVE-2007-2221

Unspecified vulnerability in the mdsauth.dll COM object in Microsoft Windows Media Server in the Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on Windows 2000 SP4; 6 and 7 on Windows XP SP2, or Windows Server 2003 SP1 or SP2; or 7 on Windows Vista allows remote attackers to...

9.3CVSS6.6AI score0.37366EPSS
Exploits0References12
Cvelist
Cvelist
added 2007/05/08 11:0 p.m.25 views

CVE-2007-2221

Unspecified vulnerability in the mdsauth.dll COM object in Microsoft Windows Media Server in the Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on Windows 2000 SP4; 6 and 7 on Windows XP SP2, or Windows Server 2003 SP1 or SP2; or 7 on Windows Vista allows remote attackers to...

6.6AI score0.37366EPSS
Exploits0References12
CVE
CVE
added 2007/05/08 11:0 p.m.171 views

CVE-2007-2221

CVE-2007-2221 corresponds to a vulnerability in the mdsauth.dll ActiveX control used by Microsoft Windows Media Services within Internet Explorer. The mdsauth.dll COM object can be instantiated via IE, enabling an attacker to overwrite arbitrary files on a vulnerable system, potentially allowing ...

9.3CVSS6.5AI score0.37366EPSS
Exploits0References12Affected Software1
ATTACKERKB
ATTACKERKB
added 2006/12/14 8:28 p.m.3 views

CVE-2006-6304

The docoredump function in fs/exec.c in the Linux kernel 2.6.19 sets the flag variable to OEXCL but does not use it, which allows context-dependent attackers to modify arbitrary files via a rewrite attack during a core dump...

7.5CVSS5.7AI score0.0245EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2006/12/14 8:28 p.m.32 views

CVE-2006-6304

The docoredump function in fs/exec.c in the Linux kernel 2.6.19 sets the flag variable to OEXCL but does not use it, which allows context-dependent attackers to modify arbitrary files via a rewrite attack during a core dump...

7.5CVSS7.2AI score0.0245EPSS
Exploits0References1
CVE
CVE
added 2006/12/14 8:0 p.m.84 views

CVE-2006-6304

The CVE-2006-6304 issue affects Linux kernel 2.6.19 where do_coredump in fs/exec.c sets the O_EXCL flag but does not use it, enabling a context-dependent attacker to modify arbitrary files via a core-dump rewrite attack. A fix is available in the kernel changelog (2.6.19.1) and related advisories...

7.5CVSS7AI score0.0245EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2006/12/14 8:0 p.m.36 views

CVE-2006-6304

The docoredump function in fs/exec.c in the Linux kernel 2.6.19 sets the flag variable to OEXCL but does not use it, which allows context-dependent attackers to modify arbitrary files via a rewrite attack during a core dump...

7AI score0.0245EPSS
Exploits0References10
Check Point Advisories
Check Point Advisories
added 2006/09/12 12:0 a.m.9 views

Update Protection against Apache LDAP HTTP Server Buffer Overflow Vulnerability

A vulnerability exists in Apache HTTP Server. Attackers can trigger this vulnerability via crafted URLs that are not properly handled using certain Rewrite rules. This issue only affects installations using Rewrite rules with specific characteristics. This flaw allows attackers to cause denial of...

7.6CVSS5.2AI score0.96436EPSS
Exploits20
NVD
NVD
added 2006/07/28 6:2 p.m.26 views

CVE-2006-3747

Off-by-one error in the ldap scheme handling in the Rewrite module modrewrite in Apache 1.3 from 1.3.28, 2.0.46 and other versions before 2.0.59, and 2.2, when RewriteEngine is enabled, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via...

7.6CVSS7.5AI score0.96436EPSS
Exploits20References90
OSV
OSV
added 2006/07/28 6:2 p.m.6 views

DEBIAN-CVE-2006-3747

Off-by-one error in the ldap scheme handling in the Rewrite module modrewrite in Apache 1.3 from 1.3.28, 2.0.46 and other versions before 2.0.59, and 2.2, when RewriteEngine is enabled, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via...

7.6CVSS9.4AI score0.96436EPSS
Exploits20References1
UbuntuCve
UbuntuCve
added 2006/07/28 6:2 p.m.34 views

CVE-2006-3747

Off-by-one error in the ldap scheme handling in the Rewrite module modrewrite in Apache 1.3 from 1.3.28, 2.0.46 and other versions before 2.0.59, and 2.2, when RewriteEngine is enabled, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via...

7.6CVSS7.2AI score0.96436EPSS
Exploits20References2
Debian CVE
Debian CVE
added 2006/07/28 6:0 p.m.46 views

CVE-2006-3747

Off-by-one error in the ldap scheme handling in the Rewrite module modrewrite in Apache 1.3 from 1.3.28, 2.0.46 and other versions before 2.0.59, and 2.2, when RewriteEngine is enabled, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via...

7.6CVSS7.4AI score0.96436EPSS
Exploits20
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.354 views

Apache UserDir Sensitive Information Disclosure

An information leak occurs on Apache based web servers whenever the UserDir module is enabled. The vulnerability allows an external attacker to enumerate existing accounts by requesting access to their home directory and monitoring the response. OpenVAS Vulnerability Test $Id: apacheusername.nasl...

5CVSS0.1AI score0.65563EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2004/09/13 12:0 a.m.11 views

Apache < 2.0.51 mod_ssl Rewrite Rules DoS

Binary data 2276.prm...

5CVSS7.3AI score0.69653EPSS
Exploits1References3
Packet Storm
Packet Storm
added 2004/05/30 12:0 a.m.20 views

jportal.txt

Jportal is a portal system, quite commonly used: Google Results 1 - 10 of about 56,100 for "powered by jportal". 0.22 seconds Homepage: http://jportal2.com/ I've read its code and found: in module/print.inc.php: function artprint .... $query = "SELECT FROM $arttbl WHERE id=$id"; ... What to say? ...

7.4AI score
Exploits0
Rows per page
Query Builder