1457 matches found
Hummingbird Deployment Wizard 2008 - ActiveX Command Execution
------------------------------------------------------------------------------ Hummingbird Deployment Wizard 2008 DeployRun.dll Arbitrary File Execution url: http://www.hummingbird.com Author: shinnai mail: shinnaiatautisticidotorg site: http://www.shinnai.net This was written for educational...
Hummingbird Deployment Wizard 2008 - Registry Values Creation/Change
------------------------------------------------------------------------------------ Hummingbird Deployment Wizard 2008 DeployRun.dll Registry Values Creation/Change url: http://www.hummingbird.com Author: shinnai mail: shinnaiatautisticidotorg site: http://www.shinnai.net This was written for...
Hummingbird Deployment Wizard 2008 - ActiveX File Execution(2)
-------------------------------------------------------------------------------- Hummingbird Deployment Wizard 2008 DeployRun.dll Arbitrary File Execution2 url: http://www.hummingbird.com Author: shinnai mail: shinnaiatautisticidotorg site: http://www.shinnai.net This was written for educational...
Hummingbird Deployment Wizard 10 - 'DeployRun.dll' ActiveX Control Multiple Security Vulnerabilities
source: https://www.securityfocus.com/bid/31799/info Hummingbird Deployment Wizard 10 ActiveX control is prone to multiple vulnerabilities that attackers can exploit to run arbitrary code. The issues stem from insecure methods used within 'DeployRun.dll'. An attacker can exploit these issues by...
CVE-2008-4108
Tools/faqwiz/move-faqwiz.sh aka the generic FAQ wizard moving tool in Python 2.4.5 might allow local users to overwrite arbitrary files via a symlink attack on a tmp$RANDOM.tmp temporary file. NOTE: there may not be common usage scenarios in which tmp$RANDOM.tmp is located in an untrusted directo...
DEBIAN-CVE-2008-4108
Tools/faqwiz/move-faqwiz.sh aka the generic FAQ wizard moving tool in Python 2.4.5 might allow local users to overwrite arbitrary files via a symlink attack on a tmp$RANDOM.tmp temporary file. NOTE: there may not be common usage scenarios in which tmp$RANDOM.tmp is located in an untrusted directo...
CVE-2008-4108
Tools/faqwiz/move-faqwiz.sh aka the generic FAQ wizard moving tool in Python 2.4.5 might allow local users to overwrite arbitrary files via a symlink attack on a tmp$RANDOM.tmp temporary file. NOTE: there may not be common usage scenarios in which tmp$RANDOM.tmp is located in an untrusted directo...
Directory traversal
Tools/faqwiz/move-faqwiz.sh aka the generic FAQ wizard moving tool in Python 2.4.5 might allow local users to overwrite arbitrary files via a symlink attack on a tmp$RANDOM.tmp temporary file. NOTE: there may not be common usage scenarios in which tmp$RANDOM.tmp is located in an untrusted directo...
CVE-2008-4108
Tools/faqwiz/move-faqwiz.sh aka the generic FAQ wizard moving tool in Python 2.4.5 might allow local users to overwrite arbitrary files via a symlink attack on a tmp$RANDOM.tmp temporary file. NOTE: there may not be common usage scenarios in which tmp$RANDOM.tmp is located in an untrusted directo...
CVE-2008-4108
The CVE-2008-4108 entry concerns Tools/faqwiz/move-faqwiz.sh (the generic FAQ wizard moving tool) in Python 2.4.5, where a local attacker could cause a symlink attack on a temporary file (tmp$RANDOM.tmp) to overwrite arbitrary files. According to the NVD/mitigations notes, this is a local vulnera...
CVE-2008-4108
Tools/faqwiz/move-faqwiz.sh aka the generic FAQ wizard moving tool in Python 2.4.5 might allow local users to overwrite arbitrary files via a symlink attack on a tmp$RANDOM.tmp temporary file. NOTE: there may not be common usage scenarios in which tmp$RANDOM.tmp is located in an untrusted directo...
Stack overflow
Stack-based buffer overflow in the Anzio Web Print Object WePO ActiveX control 3.2.19 and 3.2.24, as used in Anzio Print Wizard, allows remote attackers to execute arbitrary code via a long mainurl parameter...
CVE-2008-3480
Stack-based buffer overflow in the Anzio Web Print Object WePO ActiveX control 3.2.19 and 3.2.24, as used in Anzio Print Wizard, allows remote attackers to execute arbitrary code via a long mainurl parameter...
Core Security Technologies Advisory 2008.0624
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Anzio Web Print Object Buffer Overflow Advisory Information Title: Anzio Web Print Object Buffer Overflow Advisory ID: CORE-2008-0624 Advisory URL:...
Coppermine Photo Gallery < 1.4.18 Bridge Wizard Cookie SQL Injection
Binary data 4464.prm...
Coppermine Photo Gallery bridge/coppermine.inc.php Bridge Wizard Session Cookie SQL Injection
The version of Coppermine installed on the remote host fails to sanitize user-supplied input to the bridge wizard session cookie before using it in a database query in 'bridge/coppermine.inc.php'. Regardless of PHP's 'magicquotesgpc' setting, an attacker may be able to exploit this issue to...
CVE-2007-6619
The Setup Wizard in Atlassian JIRA Enterprise Edition before 3.12.1 does not properly restrict setup attempts after setup is complete, which allows remote attackers to change the default language...
Design/Logic Flaw
The Setup Wizard in Atlassian JIRA Enterprise Edition before 3.12.1 does not properly restrict setup attempts after setup is complete, which allows remote attackers to change the default language...
CVE-2007-6619
CVE-2007-6619 affects Atlassian Jira Enterprise Edition prior to 3.12.1. The Setup Wizard does not properly restrict setup attempts after completion, enabling remote actors to change the default language. The issue is described alongside related vulnerabilities in 3.12.0-era Jira (noted in Nessus...
CVE-2007-6619
The Setup Wizard in Atlassian JIRA Enterprise Edition before 3.12.1 does not properly restrict setup attempts after setup is complete, which allows remote attackers to change the default language...