2509 matches found
CVE-2000-0441
Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems...
CVSWeb Developer CVSWeb 1.80 - Insecure Perl 'open' Code Execution
source: https://www.securityfocus.com/bid/1469/info Cvsweb 1.80 makes an insecure call to the perl OPEN function, providing attackers with write access to a cvs repository the ability to execute arbitrary commands on the host machine. The code that is being exploited here is the following: open$f...
Filesystem vulnerability in AIX
---EXTERNAL RELEASE---EXTERNAL RELEASE---EXTERNAL RELEASE---EXTERNAL RELEASE--- IBM EMERGENCY RESPONSE SERVICE OUTSIDE ADVISORY REDISTRIBUTION 19 May 2000 14:30 GMT Number: ERS-OAR-E01-2000:087.1 =============================================================================== The ERS Outside...
Pacific Software Carello 1.2.1 - File Duplication Source Disclosure
Pacific Software Carello 1.2.1 - File Duplication Source Disclosure source: https://www.securityfocus.com/bid/1245/info A remote user can gain read and write access on a target machine running Carello shopping cart software. First, a user may create a duplicate of a known file in a known director...
rlogin Service Detection
The rlogin service is running on the remote host. This service is vulnerable since data is passed between the rlogin client and server in cleartext. A man-in-the-middle attacker can exploit this to sniff logins and passwords. Also, it may allow poorly authenticated logins without passwords. If th...
rsh Service Detection
The rsh service is running on the remote host. This service is vulnerable since data is passed between the rsh client and server in cleartext. A man-in-the-middle attacker can exploit this to sniff logins and passwords. Also, it may allow poorly authenticated logins without passwords. If the host...
msie.5.0.hta.txt
Date: Tue, 8 Jun 1999 08:41:54 -0400 From: "Noller, Jesse" To: [email protected] Subject: IE 5.0 and HTAs Security hole Good day: I recently set up an NT box, with just the basic setup, no other modifications, other than SP5, and an installation of Internet Explorer 5.0. I was...
WU-FTPD 2.4.2 SCO Open Server 5.0.5 ProFTPd 1.2 pre1 - realpath Remote Buffer Overflow (2)
WU-FTPD 2.4.2 SCO Open Server 5.0.5 ProFTPd 1.2 pre1 - realpath Remote Buffer Overflow 2 / source: https://www.securityfocus.com/bid/113/info There is a vulnerability in ProFTPD versions 1.2.0pre1 and earlier and in wu-ftpd 2.4.2 beta 18 VR9 and earlier. This vulnerability is a buffer overflow...
PT-1997-1073 · Nfs · Nfs
Name of the Vulnerable Software and Affected Versions: NFS affected versions not specified Description: The issue allows attackers to read and write any file on the system by specifying a false UID. Recommendations: At the moment, there is no information about a newer version that contains a fix...