7252 matches found
[SECURITY] Fedora 7 Update: kdeaccessibility-3.5.8-2.fc7
Included with this package are: kmag, a screen magnifier, kmousetool, a program for people whom it hurts to click the mouse, kmouth, program that allows people who have lost their voice to let their computer speak for them...
[SECURITY] Fedora 7 Update: kdegraphics-3.5.8-7.fc7
Graphics applications for the K Desktop Environment, including kamera digital camera support kcoloredit palette editor and color chooser kdvi displays TeX .dvi files kghostview displays postscript files kiconedit icon editor kooka scanner application kpdf displays PDF files kruler screen ruler an...
Ubuntu 5.04 / 5.10 / 6.06 LTS / 6.10 : screen vulnerability (USN-370-1)
cstone and Rich Felker discovered a programming error in the UTF8 string handling code of 'screen' leading to a denial of service. If a crafted string was displayed within a screen session, screen would crash or possibly execute arbitrary code. Note that Tenable Network Security has extracted the...
[SECURITY] Fedora 8 Update: xscreensaver-5.03-14.fc8
A modular screen saver and locker for the X Window System. More than 200 display modes are included in this package. This is a metapackage for installing all default packages related to XScreenSaver...
contentcustom-disclose.txt
CONTENTCustomizer Trick: Hit Ctrl+Y on a page that ContentCustomizer controls and it brings you to the login screen ; Dork: inurl:"generator/default.php?doc=" Other fun stuff: dialog.php?action=del&doc='+pagename // Delete dialog.php?action=delbackup&doc='+pagename // Delete Backup...
CVE-2003-1503
Buffer overflow in AOL Instant Messenger AIM 5.2.3292 allows remote attackers to execute arbitrary code via an aim:getfile URL with a long screen name...
[SECURITY] Fedora 7 Update: xscreensaver-5.03-12.fc7
A modular screen saver and locker for the X Window System. More than 200 display modes are included in this package. This is a metapackage for installing all default packages related to XScreenSaver...
Session fixation
xscreensaver 5.03 and earlier, when running without xscreensaver-gl-extras GL extras installed, crashes when /usr/bin/xscreensaver-gl-helper does not exist and a user attempts to unlock the screen, which allows attackers with physical access to gain access to the locked session...
CVE-2007-5585
xscreensaver 5.03 and earlier, when running without xscreensaver-gl-extras GL extras installed, crashes when /usr/bin/xscreensaver-gl-helper does not exist and a user attempts to unlock the screen, which allows attackers with physical access to gain access to the locked session...
openSUSE 10 Security Update : screen (screen-2198)
A special formed UTF-8 sequence in text could be used to crash the terminal multitasker screen by overwriting memory in the heap. This is potentially exploitable to execute code. CVE-2006-4573 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...
CVE-2007-5240
Visual truncation vulnerability in the Java Runtime Environment in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.215 and earlier, and SDK and JRE 1.3.120 and earlier allows remote attackers to circumvent display of the untrusted-code warning banner...
Design/Logic Flaw
Visual truncation vulnerability in the Java Runtime Environment in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.215 and earlier, and SDK and JRE 1.3.120 and earlier allows remote attackers to circumvent display of the untrusted-code warning banner...
simpnews24103-fdisclose.txt
netVigilance Security Advisory 69 SimpNews version 2.41.03 File Content Disclosure Vulnerability Description: SimpNews is a news system written in PHP. Features: Data stored in MySQL, admin interface, support for multiple languages, support for multiple instances in one database, own header,...
CVE-2007-5058
Cross-site scripting XSS vulnerability in the Web administration interface in Barracuda Spam Firewall before firmware 3.5.10.016 allows remote attackers to inject arbitrary web script or HTML via the username field in a login attempt, which is not properly handled when the Monitor Web Syslog scre...
[SECURITY] Fedora 7 Update: kdegraphics-3.5.7-2.fc7
Graphics applications for the K Desktop Environment, including kamera digital camera support kcoloredit palette editor and color chooser kdvi displays TeX .dvi files kghostview displays postscript files kiconedit icon editor kooka scanner application kpdf displays PDF files kruler screen ruler an...
Java screen content spoofing
It's possible to switch applet to full-screen mode...
Max label limit can be passed by adding labels via ajax
For CONF-8978, limits were implemented on how many labels can be added in one submit by various "add label" screens, and how many labels can be set on an edit page/edit news screen. However, there is nothing to prevent extra labels being added by the "add label" screens beyond the number allowed ...
CVE-2007-3283
GNOME XScreenSaver in Sun Solaris 8 and 9 before 20070417, when root is logged into the console, does not automatically lock the screen after a session has been inactive, which might allow physically proximate attackers to access the console...
screen-unlock.txt
/ / / / / / / / / / / / / // / / / / / / / / / // / / / // // / / / / / // ///// // // // Helith - 0815 -------------------------------------------------------------------------------- Author: Rembrandt Date: Known since somewhere in &cantremember Affected Software: screen = 4.0.3 Type: Local Typ...
Design/Logic Flaw
GNU screen 4.0.3 allows local users to unlock the screen via a CTRL-C sequence at the password prompt. NOTE: multiple third parties report inability to reproduce this issue...