CVE-2005-3549

Direct code injection vulnerability in Task Manager in Invision Power Board 2.0.1 allows limited remote attackers to execute arbitrary code by referencing the file in "Task PHP File To Run" field and selecting "Run Task Now"...

CVE-2005-3548

Directory traversal vulnerability in Task Manager in Invision Power Board IP.Board 2.0.1 allows limited remote attackers to include files via a .. dot dot in the "Task PHP File To Run" field...

CVE-2005-3548

CVE-2005-3548 affects Invision Power Board (IP.Board) 2.0.1: a directory traversal in the Task Manager component (Task PHP File To Run field) allows limited remote file inclusion via .., enabling network-accessible exploitation. According to the NVD entry, the attack vector is NETWORK with LOW co...

CVE-2005-3549

CVE-2005-3549 describes a direct code injection vulnerability in Invision Power Board 2.0.1 Task Manager. The flaw allows limited remote attackers to execute arbitrary code by placing a target file reference in the Task PHP File To Run field and selecting Run Task Now. The affected software is In...

Invision Power Board Privilege Esaclation (2.0.1 + more)

--------- Title: Invision Power Board --------- Version: 2.0.1 maybe more --------- Severity: Low --------- Info: Invision Board Admin able to execute arbitrary code as uid of the apache process. ---------- Bugs: 1 Fails to jail location of Task Managers scripts and allows directory traversal. 2...

[Full-disclosure] Invision Power Board Privilege Escalation (2.0.1 + more)

--------- Title: Invision Power Board --------- Version: 2.0.1 maybe more --------- Severity: Low --------- Info: Invision Board Admin able to execute arbitrary code as uid of the apache process. ---------- Bugs: 1 Fails to jail location of Task Managers scripts and allows directory traversal. 2...

Solve 3 3 8 9 login to see the interface issue-bug warning-the black bar safety net

Today. The northeast wolf of a brother sent to one IP..that is just engage in the broiler..3 3 8 9. ..Can log into to see the desktop..can't do anything...ask me how to solve.. With and on the landing...a look as he said...just tried it..to solve this problem see the desktop..found broiler...

Use the saber to create your own simple back door[has been issued with the hacker X-Files]-vulnerability warning-the black bar safety net

We all know nc is a powerful and flexible hacking tools, he can do many things, such as a telnet client port, such as the invasion of time to bounce back the shell, such as scanning...... But have you ever wondered will he build into a service-level Backdoor? Now much better with me as the rookie...

vbscript.dll regular expression object (RegExp) memory leak

Hello, The following vbscript, which uses the RegExp object, causes memory leak tested under Windows XP SP2 with Script Engine V5.6; when you run it, locate the associated wscript.exe or cscript.exe process in the Windows task manager, then click "OK" in the "Start" message box, and see how the...

CVE-2001-1238

Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named 1 winlogon.exe, 2 csrss.exe, 3 smss.exe and 4 services.exe via the Process tab which could allow local users to install Trojan horses that cannot be stopped with the Task Manager...

CVE-2001-1238

Task Manager in Windows 2000 cannot end certain processes with uppercase names (e.g., winlogon.exe, csrss.exe, smss.exe, services.exe) via the Process tab. This could allow local users to install Trojan horses that cannot be stopped with Task Manager. Documents do not provide a fix or patch; PT-S...

CVE-2001-1238

Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named 1 winlogon.exe, 2 csrss.exe, 3 smss.exe and 4 services.exe via the Process tab which could allow local users to install Trojan horses that cannot be stopped with the Task Manager...

PT-2001-2370 · Microsoft · Windows 2000

Name of the Vulnerable Software and Affected Versions: Windows 2000 Description: The issue concerns the Task Manager in Windows 2000, which does not allow local users to end certain processes via the Process tab. Specifically, processes with uppercase letters in their names, such as winlogon.exe,...

CVE-1999-1443

Micah Software Full Armor Network Configurator and Zero Administration allow local users with physical access to bypass the desktop protection by 1 using and kill the process using the task manager, 2 booting the system from a separate disk, or 3 interrupting certain processes that execute while...