Cisco Wide Area Application Services Software Scripts Privilege Escalation Vulnerability

A vulnerability in Cisco-provided scripts disk-check.sh and harcap.sh for Cisco Wide Area Application Services WAAS Software could allow an authenticated, local attacker to elevate their privilege level to root. The attacker must have valid user credentials with super user privileges level 15 to...

SAP Internet Graphics Server Arbitrary File Upload Vulnerability

SAP Internet Graphics Server IGS is a graphics server from SAP, Germany. The product is capable of generating graphs or charts in different areas. A security vulnerability exists in SAP IGS that stems from the program's failure to properly validate file formats. An attacker could exploit the...

CVE-2018-2420

SAP Internet Graphics Server IGS, 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to upload any file including script files without proper file format validation...

Quant Loader Trojan Spreads Via Microsoft URL Shortcut Files

Researchers are warning of a new email phishing campaign that downloads and launches the Quant Loader trojan, capable of distributing ransomware and stealing passwords. Barracuda on Tuesday said it has been tracking emails containing zipped Microsoft internet shortcut files with a “.url” file...

Cisco Application Policy Infrastructure Controller Local Command Injection and Privilege Escalation Vulnerability

A vulnerability in certain system script files that are installed at boot time on Cisco Application Policy Infrastructure Controllers could allow an authenticated, local attacker to gain elevated privileges and execute arbitrary commands with root privileges on an affected host operating system...

ZYCHCMS V06 Build170526 has a file inclusion vulnerability

ZYCHCMS is an enterprise website management system. A file inclusion vulnerability exists in ZYCHCMS V06. An attacker can exploit this vulnerability to upload script files...

Cisco Policy Suite Elevation of Privilege Vulnerability

Cisco Policy Suite is the management policy suite. An elevation of privilege vulnerability exists in certain script files in Cisco Policy Suite CPS Software, which can be exploited by a local attacker to elevate privileges to root...

Firmware File System Extraction: firmwalker

A simple bash script for searching the extracted or mounted firmware file system. It will search through the extracted or mounted firmware file system for things of interest such as: etc/shadow and etc/passwd list out the etc/ssl directory search for SSL related files such as .pem, .crt, etc...

Cisco Headend System Release Sensitive Information Disclosure Vulnerability

The Cisco Headend System Release is a front-end broadband digital transmission system. A security vulnerability exists in the Cisco Headend System Release that could allow a remote attacker to submit a specially crafted HTTP request to read a temporary script file or archive to obtain sensitive...

Yaws 1.5x Remote Source Code Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13981/info A vulnerability has been reported in Yaws that may result in the disclosure of script files' source code. Information obtained in this manner may be used by the attacker to launch further attacks against a...

Microsoft Internet Explorer 5.5/6.0 Spoofable File Extensions Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3597/info It is possible for a malicious webmaster, hosting files on an website, to spoof file extensions for users of Internet Explorer. For example, an .exe file can be made to look like a .txt or other seemingly harmle...

Directory traversal

Directory traversal vulnerability in the CLI parser in Cisco NX-OS allows local users to create arbitrary script files via a relative pathname in the "file name" parameter, aka Bug IDs CSCua71557 and CSCua71551...

CVE-2012-4141

Directory traversal vulnerability in the CLI parser in Cisco NX-OS allows local users to create arbitrary script files via a relative pathname in the "file name" parameter, aka Bug IDs CSCua71557 and CSCua71551...

EMC VNX / Celerra privilege escalation

Weak permissions for script files...

CVE-2013-3270

EMC VNX Control Station before 7.1.70.2 and Celerra Control Station before 6.0.70.1 have an incorrect group ownership for unspecified script files, which allows local users to gain privileges by leveraging nasadmin group membership...

Avaya IP Office Customer Call Reporter ImageUpload.ashx file upload

Added: 10/22/2012 CVE: CVE-2012-3811 BID: 54225 OSVDB: 83399 Background Avaya IP Office is a unified communications solution for mobile workforce. Problem The ImageUpload.ashx script allows unauthenticated users to upload arbitrary script files to the webserver. The script files can then be...

DEBIAN-CVE-2011-4578

event.c in acpid aka acpid2 before 2.0.11 does not have an appropriate umask setting during execution of event-handler scripts, which might allow local users to 1 perform write operations within directories created by a script, or 2 read files created by a script, via standard filesystem system...

Microsoft IIS protection bypass

Password protection bypass, script files content access...

Symantec Web Gateway upload_file Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Web Gateway. Authentication is not required to exploit this vulnerability. The specific flaw exists because Symantec Web Gateway allows unauthenticated users to upload a file while...

Cross site request forgery (csrf)

The Traffic Grapher Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the source code of NtDecision script files with a .nd extension via an invalid version number in an HTTP request, as demonstrated using default.nd. NOTE: some of these details are obtained from...