1326 matches found
MS Internet Explorer <= 7 Remote Arbitrary File Rewrite PoC (MS07-027)
No description provided by source. html title MS07-027 mdsauth.dll NMSA Session Description Object SaveAs control, arbitrary file modification /title body OBJECT id="target" classid="clsid:d4fe6227-1288-11d0-9097-00aa004254a0" /OBJECT script language="vbscript" //next script is converted to UTF16...
MS Internet Explorer <= 7 Remote Arbitrary File Rewrite PoC (MS07-027)
Exploit for unknown platform in category remote exploits ====================================================================== MS Internet Explorer MS07-027 mdsauth.dll NMSA Session Description Object SaveAs control, arbitrary file modification //next script is converted to UTF16...
Microsoft Internet Explorer multiple security vulnerabilities
Multiple memory corruption on COM objects and HTML parsing, files rewrite...
Microsoft Internet Explorer 7 - Arbitrary File Rewrite (MS07-027)
Microsoft Internet Explorer 7 - Arbitrary File Rewrite MS07-027 MS07-027 mdsauth.dll NMSA Session Description Object SaveAs control, arbitrary file modification //next script is converted to UTF16 target.SessionDescription="MS07-027 mdsauth.dll Proof of Concept exploit" target.SessionAuthor="Andr...
Microsoft Internet Explorer 7 - Arbitrary File Rewrite (MS07-027)
MS07-027 mdsauth.dll NMSA Session Description Object SaveAs control, arbitrary file modification //next script is converted to UTF16 target.SessionDescription="MS07-027 mdsauth.dll Proof of Concept exploit" target.SessionAuthor="Andres Tarasco Acuna" target.SessionEmailContact="atarascoatgmail.co...
CVE-2007-2221
Unspecified vulnerability in the mdsauth.dll COM object in Microsoft Windows Media Server in the Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on Windows 2000 SP4; 6 and 7 on Windows XP SP2, or Windows Server 2003 SP1 or SP2; or 7 on Windows Vista allows remote attackers to...
CVE-2007-2221
Unspecified vulnerability in the mdsauth.dll COM object in Microsoft Windows Media Server in the Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on Windows 2000 SP4; 6 and 7 on Windows XP SP2, or Windows Server 2003 SP1 or SP2; or 7 on Windows Vista allows remote attackers to...
CVE-2007-2221
CVE-2007-2221 corresponds to a vulnerability in the mdsauth.dll ActiveX control used by Microsoft Windows Media Services within Internet Explorer. The mdsauth.dll COM object can be instantiated via IE, enabling an attacker to overwrite arbitrary files on a vulnerable system, potentially allowing ...
CVE-2006-6304
The docoredump function in fs/exec.c in the Linux kernel 2.6.19 sets the flag variable to OEXCL but does not use it, which allows context-dependent attackers to modify arbitrary files via a rewrite attack during a core dump...
CVE-2006-6304
The docoredump function in fs/exec.c in the Linux kernel 2.6.19 sets the flag variable to OEXCL but does not use it, which allows context-dependent attackers to modify arbitrary files via a rewrite attack during a core dump...
CVE-2006-6304
The CVE-2006-6304 issue affects Linux kernel 2.6.19 where do_coredump in fs/exec.c sets the O_EXCL flag but does not use it, enabling a context-dependent attacker to modify arbitrary files via a core-dump rewrite attack. A fix is available in the kernel changelog (2.6.19.1) and related advisories...
CVE-2006-6304
The docoredump function in fs/exec.c in the Linux kernel 2.6.19 sets the flag variable to OEXCL but does not use it, which allows context-dependent attackers to modify arbitrary files via a rewrite attack during a core dump...
Update Protection against Apache LDAP HTTP Server Buffer Overflow Vulnerability
A vulnerability exists in Apache HTTP Server. Attackers can trigger this vulnerability via crafted URLs that are not properly handled using certain Rewrite rules. This issue only affects installations using Rewrite rules with specific characteristics. This flaw allows attackers to cause denial of...
CVE-2006-3747
Off-by-one error in the ldap scheme handling in the Rewrite module modrewrite in Apache 1.3 from 1.3.28, 2.0.46 and other versions before 2.0.59, and 2.2, when RewriteEngine is enabled, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via...
DEBIAN-CVE-2006-3747
Off-by-one error in the ldap scheme handling in the Rewrite module modrewrite in Apache 1.3 from 1.3.28, 2.0.46 and other versions before 2.0.59, and 2.2, when RewriteEngine is enabled, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via...
CVE-2006-3747
Off-by-one error in the ldap scheme handling in the Rewrite module modrewrite in Apache 1.3 from 1.3.28, 2.0.46 and other versions before 2.0.59, and 2.2, when RewriteEngine is enabled, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via...
CVE-2006-3747
Off-by-one error in the ldap scheme handling in the Rewrite module modrewrite in Apache 1.3 from 1.3.28, 2.0.46 and other versions before 2.0.59, and 2.2, when RewriteEngine is enabled, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via...
Apache UserDir Sensitive Information Disclosure
An information leak occurs on Apache based web servers whenever the UserDir module is enabled. The vulnerability allows an external attacker to enumerate existing accounts by requesting access to their home directory and monitoring the response. OpenVAS Vulnerability Test $Id: apacheusername.nasl...
Apache < 2.0.51 mod_ssl Rewrite Rules DoS
Binary data 2276.prm...
jportal.txt
Jportal is a portal system, quite commonly used: Google Results 1 - 10 of about 56,100 for "powered by jportal". 0.22 seconds Homepage: http://jportal2.com/ I've read its code and found: in module/print.inc.php: function artprint .... $query = "SELECT FROM $arttbl WHERE id=$id"; ... What to say? ...