1791 matches found
sge -- local root exploit in bundled rsh executable
Sun Microsystems reports: The SGE 6.0u71 release fixes a security bug which can allow malicious users to gain root access...
CVE-2005-4414
Unspecified vulnerability in Teamwork 3 before alpha 1.7 has unknown impact and attack vectors, related to "a menu security bug."...
CVE-2005-4414
Technical details for CVE-2005-4414 are not publicly available in the provided documents. Monitor for updates.
phpCOIN-1.2.2-Full-2005 SQL Injection
This bug can't exploited cuz the sql injection is after ORDER BY and then we can't do UNION SELECT with MySQL Server if the Server is MS-SQL try to do this 0,0; New SQL Query //------------// File Name :- coinmodulesarticelsarticlesfuncs.php Line :- 187 Var :- $recnext Fix :- Line 184 Add This...
ibProArcade.txt
Sql injection in ibProArcade. This bug was discoverd in all of the versions of ibproarcade 2.x. It was tested and found perfectly working under vBulettin or Invision power board. Date:2005-11-5 The injection is here: module=report&user=userid Query: 'SELECT name FROM ibfmembers WHERE id=userid'...
Sql injection in ibProArcade
Sql injection in ibProArcade. This bug was discoverd in all of the versions of ibproarcade 2.x. It was tested and found perfectly working under vBulettin or Invision power board. Date:2005-11-5 The injection is here: module=report&user=userid Query: 'SELECT name FROM ibfmembers WHERE id=userid'...
WebLogic Server /%00/ bug
Requesting a URL with SPDX-FileCopyrightText: 2001 StrongHoldNet Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:weblogicserver"; ifdescription...
Fedora Core 4 : pam-0.79-9.6 (2005-1031)
This update fixes a security bug in unixchkpwd allowing brute-force attacks against passwords in /etc/shadow by a regular user when SELinux is enabled. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempte...
CVE-2004-2537
Technical details (affected product/version, root cause, exploit methods) are not provided in the supplied documents. Monitor for updates.
CVE-2004-2537
Unspecified vulnerability in SurgeMail before 2.2c10 has unknown impact and attack vectors, related to a "Webmail security bug."...
Debian DSA-864-1 : ruby1.8 - programming error
Yutaka Oiwa discovered a bug in Ruby, the interpreter for the object-oriented scripting language, that can cause illegal program code to bypass the safe level and taint flag protections check and be executed. The following matrix lists the fixed versions in our distributions : old stable woody...
MuOnline Loopholes Web Server - pkok.asp SQL Injection
MuOnline Loopholes Web Server - pkok.asp SQL Injection milw0rm.com 2005-10-15...
oracle_htmldb_css.txt
Cross-Site-Scripting Vulnerabilities in Oracle HTMLDB Name Cross-Site-Scripting Vulnerabilities in Oracle HTMLDB Systems Affected Oracle HTMLDB Severity Medium Risk Category Cross Site Scripting CSS/XSS Vendor URL http://www.oracle.com This advisory...
Important: Red Hat Security Advisory: Updated kernel packages available for Red Hat Enterprise Linux 4 Update 2
Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 4. This is the second regular update. This update has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic...
RHEL 3 : ghostscript (RHSA-2005:081)
Updated ghostscript packages that fix a PDF output issue and a temporary file security bug are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Ghostscript is a program for displaying PostScript files or printing them to non-PostScript...
Fedora Core 4 : mozilla-1.7.12-1.5.1 (2005-927)
Updated mozilla packages that fix several security bugs are now available for Fedora Core 4. This update has been rated as having critical security impact by the Fedora Security Response Team. Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML...
Uim: Privilege escalation vulnerability
Background Uim is a multilingual input method library which provides secure and useful input method for all languages. Description Masanari Yamamoto discovered that Uim uses environment variables incorrectly. This bug causes a privilege escalation if setuid/setgid applications are linked to libui...
DSA-823-1 util-linux - privilege escalation
Bulletin has no description...
Fedora Core 4 : mozilla-1.7.10-1.5.2 (2005-873)
An updated mozilla package that fixes a security bug is now available for Fedora Core 4. This update has been rated as having critical security impact by the Fedora Security Response Team. Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor...
Fedora Core 4 : firefox-1.0.6-1.2.fc4 (2005-871)
An updated firefox package that fixes as security bug is now available for Fedora Core 4. This update has been rated as having critical security impact by the Fedora Security Response Team. Mozilla Firefox is an open source Web browser. A bug was found in the way Firefox processes certain...