5947 matches found
PT-2008-6280 · Os-Prober +1 · Os-Prober +1
Name of the Vulnerable Software and Affected Versions: os-prober version 1.17 Description: The issue allows local users to overwrite arbitrary files via a symlink attack on the /tmp/mounted-map or /tmp/raided-map temporary file. The vendor disputes this issue, stating that the insecure code path...
DEBIAN-CVE-2008-4242
ProFTPD 1.3.1 interprets long commands from an FTP client as multiple commands, which allows remote attackers to conduct cross-site request forgery CSRF attacks and execute arbitrary FTP commands via a long ftp:// URI that leverages an existing session from the FTP client implementation in a web...
cups: integer overflow in the image filter
Multiple integer overflows in 1 filter/image-png.c and 2 filter/image-zoom.c in CUPS 1.3 allow attackers to cause a denial of service crash and trigger memory corruption, as demonstrated via a crafted PNG image...
xfree86: information disclosure via TOG-CUP extension
The ProcGetReservedColormapEntries function in the TOG-CUP extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to read the contents of arbitrary memory locations via a request containing a 32-bit value that is improperly used as an array index...
PT-2007-2481 · Xmms · Phpxmms
Name of the Vulnerable Software and Affected Versions: phpXmms version 1.0 Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the tcmdp parameter to 1 "phpxmmsb.php" or 2 "phpxmmst.php". However, a reliable third party has disputed this, stating that the tcm...
CVE-2006-6281
PHP remote file inclusion vulnerability in checkstatus.php in dicshunary 0.1 alpha allows remote attackers to execute arbitrary PHP code via a URL in the dicshunaryrootpath parameter...
CVE-2006-6248
index.php in GPhotos 1.5 allows remote attackers to obtain sensitive information via an invalid rep parameter, which reveals the full path in an error message...
PT-2006-6666 · Bloo · Bloo
Name of the Vulnerable Software and Affected Versions: Bloo version 1.0 Description: A cross-site scripting XSS issue exists, allowing remote attackers to inject arbitrary web script or HTML via the lang parameter in the extensions/googiespell/googlespell proxy.php file. Recommendations: For...
PT-2006-6487 · Xoops · Xoops
Name of the Vulnerable Software and Affected Versions: XOOPS version 1.0 Description: A cross-site scripting issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the newdownloadshowdays parameter in the /modules/wfdownloads/newlist.php endpoint...
openssh DoS
sshd in OpenSSH before 4.4, when using the version 1 SSH protocol, allows remote attackers to cause a denial of service CPU consumption via an SSH packet that contains duplicate blocks, which is not properly handled by the CRC compensation attack detector...
openssh DoS
sshd in OpenSSH before 4.4, when using the version 1 SSH protocol, allows remote attackers to cause a denial of service CPU consumption via an SSH packet that contains duplicate blocks, which is not properly handled by the CRC compensation attack detector...
DEBIAN-CVE-2006-4924
sshd in OpenSSH before 4.4, when using the version 1 SSH protocol, allows remote attackers to cause a denial of service CPU consumption via an SSH packet that contains duplicate blocks, which is not properly handled by the CRC compensation attack detector...
PT-2006-5246 · Cutenews · Cutenews
Name of the Vulnerable Software and Affected Versions: CuteNews versions 1.3.x Description: The issue allows remote attackers to potentially execute arbitrary PHP code via a URL in the cutepath parameter to API endpoints such as "show news.php" or "search.php". However, analysis has not identifie...
security flaw
RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly implement configurations that 1 disable RIPv1 or 2 require plaintext or MD5 authentication, which allows remote attackers to obtain sensitive information routing state via REQUEST packets such as SEND UPDATE...
security flaw
RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly enforce RIPv2 authentication requirements, which allows remote attackers to modify routing state via RIPv1 RESPONSE packets...
ChatPat v1.0
ChatPat v1.0 Homepage: http://calendarscripts.info/download-3.html Description: An online chat room that lets users chat with each other. Effected files: fastchat.php fastshow.php The nickname input form doesn't sanatize user input before it adds it to the db. In turn this can cause SQL query...
[Full-disclosure] Skype emoticons problems / bugs
Skype 1.x havent tested on 2.x windows version has problems with emoticons when there is a big enough list of them like this :...
PT-2005-4445 · Xmb · Xmb
Name of the Vulnerable Software and Affected Versions: XMB version 1.9.2 Description: The issue allows remote attackers to obtain the installation path. This is achieved by providing an invalid fid parameter in a newthread action to the post.php file. Recommendations: For XMB version 1.9.2,...
DEBIAN-CVE-2005-3146
StoreBackup before 1.19 allows local users to perform unauthorized operations on arbitrary files via a symlink attack on temporary files...
PHPList Vunerability
SVadvisory12 Title: SQl injection Product: OpenBook Version: 1.2.2 Site: http://openbook.sourceforge.net/ Vulnerabilities Code: function authuser$userid, $password global $HTTPPOSTVARS; global $admintable; $userid=$HTTPPOSTVARS'userid'; $password=$HTTPPOSTVARS'password'; dbconnect; $query="SELECT...