3766 matches found
Virginity Security Advisory 2005-001 : Hola CMS - File destruction and System access
-------------------------------------------------------------------- Virginity Security Advisory 2005-001 - - - -------------------------------------------------------------------- DATE : 2005-03-12 15:45 GMT TYPE : remote VERSIONS AFFECTED : == hola-cms-1.4.9 http://holacms.drunkencat.net/...
[SA14550] WEBInsta Mailing list manager "absolute_path" Arbitrary File Inclusion
---------------------------------------------------------------------- Monitor, Filter, and Manage Security Information - Filtering and Management of Secunia advisories - Overview, documentation, and detailed reports - Alerting via email and SMS Request Trial: https://ca.secunia.com/?f=l...
Default Password (debug) for 'super' Account
The account 'super' on the remote host has the password 'debug'. An attacker may use it to gain further privileges on this system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. account = "super"; password = "debug"; include'deprecatednasllevel.inc'; include'compat.inc'; if description...
[SA14302] WebMod "Content-Length" Buffer Overflow Vulnerability
---------------------------------------------------------------------- Monitor, Filter, and Manage Security Information - Filtering and Management of Secunia advisories - Overview, documentation, and detailed reports - Alerting via email and SMS Request Trial: https://ca.secunia.com/?f=l...
[SA14384] TWiki ImageGalleryPlugin Shell Command Injection
TITLE: TWiki ImageGalleryPlugin Shell Command Injection SECUNIA ADVISORY ID: SA14384 VERIFY ADVISORY: http://secunia.com/advisories/14384/ CRITICAL: Moderately critical IMPACT: System access WHERE: From remote SOFTWARE: ImageGalleryPlugin 1.x TWiki plugin http://secunia.com/product/4707/...
[SA14385] Chat Anywhere User Credentials Disclosure
TITLE: Chat Anywhere User Credentials Disclosure SECUNIA ADVISORY ID: SA14385 VERIFY ADVISORY: http://secunia.com/advisories/14385/ CRITICAL: Less critical IMPACT: Exposure of sensitive information WHERE: Local system SOFTWARE: Chat Anywhere 2.x http://secunia.com/product/3163/ DESCRIPTION: Kozan...
[SA14337] Mambo "GLOBALS['mosConfig_absolute_path']" File Inclusion
TITLE: Mambo "GLOBALS'mosConfigabsolutepath'" File Inclusion SECUNIA ADVISORY ID: SA14337 VERIFY ADVISORY: http://secunia.com/advisories/14337/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: Mambo 4.x http://secunia.com/product/872/ DESCRIPTION: A vulnerability has...
CVE-2005-0496
Arkeia Network Backup Client 5.x contains hard-coded credentials that effectively serve as a back door, which allows remote attackers to access the file system and possibly execute arbitrary commands...
[SA14333] PuTTY Two Integer Overflow Vulnerabilities
TITLE: PuTTY Two Integer Overflow Vulnerabilities SECUNIA ADVISORY ID: SA14333 VERIFY ADVISORY: http://secunia.com/advisories/14333/ CRITICAL: Moderately critical IMPACT: System access WHERE: From remote SOFTWARE: PuTTY 0.x http://secunia.com/product/1137/ DESCRIPTION: Two vulnerabilities have be...
[SA14311] HP Web-Enabled Management Software HTTP Server Buffer Overflow
TITLE: HP Web-Enabled Management Software HTTP Server Buffer Overflow SECUNIA ADVISORY ID: SA14311 VERIFY ADVISORY: http://secunia.com/advisories/14311/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: HP / Compaq Insight Management Agents...
CVE-2005-0349
The CVE-2005-0349 entry covers BrightStor ARCserve Backup 11.1 UniversalAgent for UNIX, where the production release contains hard-coded credentials that enable remote access to the file system and may allow execution of arbitrary commands. Connected details specify a default/admin-like account w...
CVE-2005-0349
The production release of the UniversalAgent for UNIX in BrightStor ARCserve Backup 11.1 contains hard-coded credentials, which allows remote attackers to access the file system and possibly execute arbitrary commands...
[Full-Disclosure] Secunia Research: Microsoft Internet Explorer "createControlRange()" Memory Corruption
====================================================================== Secunia Research 09/02/2005 Microsoft Internet Explorer "createControlRange" Memory Corruption ====================================================================== Table of Contents Affected...
[SA14216] F-Secure Multiple Products ARJ Archive Handling Vulnerability
TITLE: F-Secure Multiple Products ARJ Archive Handling Vulnerability SECUNIA ADVISORY ID: SA14216 VERIFY ADVISORY: http://secunia.com/advisories/14216/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: F-Secure Anti-Virus 2004 http://secunia.com/product/3500/ F-Secure...
Mailman mailing lists manager directory traversal
It's possible to bypass filtering with URL like .../..../// and retrieve any file from from the system...
[SA14094] newsfetch NNTP Response Handling Buffer Overflows
TITLE: newsfetch NNTP Response Handling Buffer Overflows SECUNIA ADVISORY ID: SA14094 VERIFY ADVISORY: http://secunia.com/advisories/14094/ CRITICAL: Less critical IMPACT: System access WHERE: From remote SOFTWARE: newsfetch 1.x http://secunia.com/product/4591/ DESCRIPTION: Niels Heinen has...
[SA13970] FireHOL Insecure Temporary File Creation Vulnerabilities
TITLE: FireHOL Insecure Temporary File Creation Vulnerabilities SECUNIA ADVISORY ID: SA13970 VERIFY ADVISORY: http://secunia.com/advisories/13970/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: FireHOL 1.x http://secunia.com/product/4556/ DESCRIPTION: Sam Coute...
[SA13934] KOffice "Decrypt::makeFileKey2()" Buffer Overflow
TITLE: KOffice "Decrypt::makeFileKey2" Buffer Overflow SECUNIA ADVISORY ID: SA13934 VERIFY ADVISORY: http://secunia.com/advisories/13934/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: KOffice 1.x http://secunia.com/product/4155/ DESCRIPTION: A vulnerability has been...
[SA13918] Sun Java Plug-In Two Vulnerabilities
TITLE: Sun Java Plug-In Two Vulnerabilities SECUNIA ADVISORY ID: SA13918 VERIFY ADVISORY: http://secunia.com/advisories/13918/ CRITICAL: Highly critical IMPACT: Security Bypass, System access WHERE: From remote SOFTWARE: Sun Java SDK 1.4.x http://secunia.com/product/1661/ Sun Java SDK 1.3.x...
konversation irc client 0.15 - Multiple Vulnerabilities
source: https://www.securityfocus.com/bid/12312/info Konversation is a freely available IRC client for KDE windows environments on Linux platforms. Multiple remote vulnerabilities affect the Konversation IRC client. These issues are due to input validation failures and design flaws. The first iss...