1764 matches found
Command injection
The sandbox for vim allows dangerous functions such as 1 writefile, 2 feedkeys, and 3 system, which might allow user-assisted attackers to execute shell commands and write files via modelines...
CVE-2007-2438
The sandbox for vim allows dangerous functions such as 1 writefile, 2 feedkeys, and 3 system, which might allow user-assisted attackers to execute shell commands and write files via modelines...
CVE-2007-2438
The sandbox for vim allows dangerous functions such as 1 writefile, 2 feedkeys, and 3 system, which might allow user-assisted attackers to execute shell commands and write files via modelines...
Design/Logic Flaw
mirror --script in lftp before 3.5.9 does not properly quote shell metacharacters, which might allow remote user-assisted attackers to execute shell commands via a malicious script. NOTE: it is not clear whether this issue crosses security boundaries, since the script already supports commands su...
[SECURITY] [DSA 1270-2] New OpenOffice.org packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1270-2 [email protected] http://www.debian.org/security/ Martin Schulze March 28th, 2007 http://www.debian.org/security/faq -...
DSA-1270-1 openoffice.org - several vulnerabilities
Bulletin has no description...
SOL7164 - Execution of UNIX shell commands from a URL without authentication
A URL that is accessible without first authenticating to the FirePass controller may be modified to inject UNIX shell commands. Under certain conditions, the commands can then be executed with user-level privileges. Any attacker with access to the FirePass logon page can theoretically launch this...
SOL7147 - Execution of UNIX shell commands from the URL in the Admin UI
A URL that is accessible from the Device Management Maintenance Troubleshooting Tools page can be modified to inject UNIX shell commands, which are then executed with user-level privileges. Only FirePass Administrators with permission to access this URL can perform this action. Standard FirePass...
GLSA-200701-23 : Cacti: Command execution and SQL injection
The remote host is affected by the vulnerability described in GLSA-200701-23 Cacti: Command execution and SQL injection rgod discovered that the Cacti cmd.php and copycactiuser.php scripts do not properly control access to the command shell, and are remotely accessible by unauthenticated users...
Debian DSA-1250-1 : cacti - missing input sanitising
It was discovered that cacti, a frontend to rrdtool, performs insufficient validation of data passed to the 'cmd' script, which allows SQL injection and the execution of arbitrary shell commands. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...
Mac OS X 10.4.8 System Preferences Local Privilege Escalation Exploit
No description provided by source. !/usr/bin/ruby Copyright c 2007 Kevin Finisterre kflists at digitalmunition.com Lance M. Havok lmh at info-pull.com All pwnage reserved. "Exploit" for MOAB-21-01-2007: OS X, making root shells easier each day...
DSA-1250-1 cacti
Bulletin has no description...
L2J Statistik Script <= 0.09 (index.php page) Local File Include Exploit
Exploit for unknown platform in category web applications ======================================================================== L2J Statistik Script = 0.09 index.php page Local File Include Exploit ======================================================================== ? print ' | \ | \ \ / |...
DSA-1240-1 links2
Bulletin has no description...
Debian DSA-1226-1 : links - insufficient escaping
Teemu Salmela discovered that the links character mode web browser performs insufficient sanitising of smb:// URIs, which might lead to the execution of arbitrary shell commands. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
Debian DSA-1228-1 : elinks - insufficient escaping
Teemu Salmela discovered that the elinks character mode web browser performs insufficient sanitising of smb:// URIs, which might lead to the execution of arbitrary shell commands. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
DSA-1226-1 links
Bulletin has no description...
Debian DSA-1220-1 : pstotext - insecure file name quoting
Brian May discovered that pstotext, a utility to extract plain text from Postscript and PDF files, performs insufficient quoting of file names, which allows execution of arbitrary shell commands. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...
DSA-1220 pstotext
Bulletin has no description...
Debian DSA-1204-1 : ingo1 - missing input sanitising
It was discovered that the Ingo email filter rules manager performs insufficient escaping of user-provided data in created procmail rules files, which allows the execution of arbitrary shell commands. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...