46 matches found
Sun Java Web Start Plugin Command Line Argument Injection (2012)
Exploit for windows platform in category remote exploits $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
CVE-2009-4648
CVE-2009-4648 affects Accellion Secure File Transfer Appliance before 8_0_105. Root cause: access to sensitive commands run with extra sudo privileges is not properly restricted in /usr/local/bin/admin.pl, enabling local administrators to escalate privileges. Vulnerability vectors include (1) arb...
Windows search-ms protocol handler command execution vulnerability
Added: 12/11/2008 CVE: CVE-2008-4269 BID: 32652 OSVDB: 50566 Background The search-ms protocol allows applications to query the Windows Search index. Problem A vulnerability in Windows allows command execution when a user follows a specially crafted search-ms URL which passes arbitrary arguments ...
[SECURITY] [DSA 1346-1] New iceape packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1346-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 4th, 2007 http://www.debian.org/security/faq -...
DSA-1345-1 xulrunner
Bulletin has no description...
Microsoft Internet Explorer and Mozilla Firefox - URI Handler Command Injection
Microsoft Internet Explorer and Mozilla Firefox - URI Handler Command Injection source: https://www.securityfocus.com/bid/24837/info Microsoft Internet Explorer, Mozilla Firefox and Netscape Navigator are prone to a vulnerability that lets attackers inject commands through the 'firefoxurl' and...