Solaris <= 10 LPD Arbitrary File Delete Exploit (metasploit)

No description provided by source. This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artisti...

ARCservIT 6.61/6.63 Client inetd.tmp Arbitrary File Overwrite Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2748/info ARCservIT from Computer Associates contains a vulnerability which may allow malicious local users to corrupt arbitrary files. When it runs with the parameters 'inet add', 'asagent', opens and overwrites it if it...

Interbase 6.x External Table File Verification Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7291/info A vulnerability has been reported for Interbase that may result in the corruption of arbitrary system files. The vulnerability exists due to insufficient checks performed when creating or manipulating external...

CMS Mini 0.2.2 - Multiple Local File Inclusion Vulnerabilities

No description provided by source. ===================================================== CMS Mini 0.2.2 Local File Inclusion Vulnerability ===================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

NC GBook 1.0 - Remote Command injection Exploit

No description provided by source. -------------------------------------------------------------- NC GBook 1.0 Remote Command injection Exploit --------------------------------------------------------------- Founder :ThE g0bL!N Vendor:http://www.php-gaestebuch.com Thank You Very Much His0k4...

PHP File Sharing System 1.5.1 - Multiple Vulnerabilities

No description provided by source. Title: PHP File Sharing System 1.5.1 Multiple Vulnerabilities Author: blake Tested on: Windows XP SP3 with xampplite 1 XSS http://192.168.1.149/fss/index.php?cam= 2 Directory transversal http://192.168.1.149/fss/index.php?cam=/../../../../../../../.. 3 Shell...

FreeWnn 1.1.1 JServer Logging Option Data Corruption Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7918/info A vulnerability has been reported for FreeWnn that may result in an attacker obtaining elevated privileges. It has been reported that jserver may allow an attacker to corrupt arbitrary files. Due to this, an...

ION Script 1.4 - Remote File Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6091/info A vulnerability has been discovered in ION Script. By sending a malicious HTTP request to a webserver running the vulnerable ION Script package, it is possible for a remote attacker to disclose arbitrary webserv...

whitsoft slimserve ftpd 1.0/2.0 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2452/info SlimServ FTPd is a free ftp server distributed and maintained by WhitSoft Development. SlimServe FTPd is designed to offer ftp services to the Microsoft Windows platform. A problem with the SlimSoft FTP daemon...

S.u.S.E. Linux 6.x Arbitrary File Deletion Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1130/info A vulnerability exists in SuSE Linux, version 6.3 and prior, that can allow arbitrary users to delete any file on the system. If the MAXDAYSINTMP variable is set in /etc/rc.config to be larger than 0, any local...

file sharing for net 1.5 - Directory Traversal file disclosure vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8513/info File Sharing for Net is said to be prone to a directory traversal vulnerability, potentially allowing users to disclose the contents of system files. The problem occurs due to the application failing to parse...

Solaris 2.x/7.0/8 catman Race Condition Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/2149/info catman is a utility for creating preformatted man pages, distributed as part of the Solaris Operating Environment. A problem exists which could allow local users to overwrite or corrupt files owned by other user...

QNX RTOS 4.25 monitor Arbitrary File Modification Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4902/info The QNX RTOS monitor utility is prone to an issue which may allow local attackers to modify arbitrary system files such as /etc/passwd. monitor is installed setuid root by default. The monitor -f command line...

Kohana Framework 2.3.3 - Directory Traversal Vulnerability

No description provided by source. Title: ====== Kohana Framework v2.3.3 - Directory Traversal Vulnerability Date: ===== 2013-01-27 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=841 VL-ID: ===== 837 Common Vulnerability Scoring System:...

Buffalo TeraStation TS-Series - Multiple Vulnerabilities

No description provided by source. Title: Buffalo TeraStation TS-Series multiple vulnerabilities Version affected: firmware version = 1.5.7 Vendor: http://www.buffalotech.com/products/network-storage Discovered by: Andrea Fabrizi Email: andrea.fabrizi gmail com Web: http://www.andreafabrizi.it...

Metainfo Sendmail 2.0/2.5,MetaIP 3.1

No description provided by source. source: http://www.securityfocus.com/bid/110/info MetaInfo www.metainfo.com puts out many NT service products, including MetaIP DHCP/DNS manager and Sendmail Unix port. Both products allow remote administration via Web UIs, and MetaIP uses Java to communicate ba...

Serv-U 2.4/2.5 FTP Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2052/info FTP Serv-U is an internet FTP server from CatSoft. Authenticated users can gain access to the ftproot of the drive where Serv-U FTP has been installed. Users that have read, write, execute and list access in the...

MySQL 3.20.32 a/3.23.34 Root Operation Symbolic Link File Overwriting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2522/info MySQL is a relational database management system RDBMS, freely available and open source. It is maintained by MySQL AB. A problem with the implementation of some MySQL databases may permit local users to overwri...

SCO Unixware 7.1 'pkg' commands Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/850/info Certain versions of SCO's Unixware only version 7.1 was tested ship with a series of package install/removal utilities which due to design issues under the SCO UnixWare operating system may read any file on the...

Happymall E-Commerce Software 4.3/4.4 Normal_HTML.CGI File Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7559/info IT has been reported that Happymall E-Commerce is prone to a file disclosure vulnerability. The problem occurs due to insufficient sanitization of user-supplied URI parameters. As a result, it may be possible fo...