7628 matches found
Vim: Arbitrary Code Execution in Commands: K, Control-], g]
Vim: Arbitrary Code Execution in Commands: K, Control-, g 1. SUMMARY Product : Vim -- Vi IMproved Versions : 3.0--current, possibly older Impact : Arbitrary code execution Wherefrom: Local Original : http://www.rdancer.org/vulnerablevim-K.html Insufficient sanitization can lead to Vim executing...
Vim 7.2c.002 Fixes Arbitrary Command Execution when Handling Tar Archives
Vim 7.2c.002 Fixes Arbitrary Command Execution when Handling Tar Archives 1. SUMMARY Product : Vim -- Vi IMproved Version : Vim = 7.0 possibly older, fixed in 7.2c.002 autoload/tar.vim version = 9 possibly older Impact : Arbitrary code execution Wherefrom: Local, remote Original :...
CA ARCserve Backup for Laptops and Desktops整数溢出漏洞
BUGTRAQ ID: 30472 CVECAN ID: CVE-2008-3175 CA的ARCserve Backup可为各种平台的服务器提供备份和恢复保护功能。 CA ARCserve Backup for Laptops and Desktops的LGServer服务在处理入站消息时存在整数溢出漏洞,如果未经认证的远程攻击者向TCP 1900端口上的LGServer服务提交了恶意请求的话,就会触发这个溢出,导致拒绝服务或执行任意指令。 Computer Associates Protection Suites 3.1 Computer Associates Protection...
Afuse 'afuse.c' SHELL命令注入漏洞
BUGTRAQ ID: 30245 CVE ID:CVE-2008-2232 CNCVE ID:CNCVE-20082232 Afuse是一款类似autofs工具的文件系统自动挂接程序。 Afuse不正确处理命令行参数,本地攻击者可以利用漏洞以高特权执行任意命令。 afuse接收如下形式的命令行: afuse /path -o mounttemplate="mount-script %m %r" \ unmounttemplate="unmount-script %m %r"...
Moderate: Red Hat Security Advisory: php security update
Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. ...
Microsoft Access Snapshot Viewer file download vulnerability
Added: 07/11/2008 CVE: CVE-2008-2463 BID: 30144 OSVDB: 46749 Background The Snapshot Viewer for Microsoft Access is used to display report snapshots without needing to fully invoke Access. It enables an ActiveX control in snapview.ocx. Problem The Snapshot Viewer ActiveX control allows remote fil...
Wordtrans-web exec_wordtrans Function Arbitrary Command Execution
The remote host is running wordtrans-web, a web-based front-end for wordtrans, for translating words. The version of wordtrans-web installed on the remote host fails to sanitize input to the 'advanced' parameter of the 'wordtrans.php' script before using it in an 'passthru' statement to execute P...
Linux Kernel BER解码缓冲区溢出漏洞
BUGTRAQ ID: 29589 CVECAN ID: CVE-2008-1673 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的cifs和ipnatsnmpbasic模块中的ASN.1 BER解码器没有正确地计算缓冲区大小,如果远程攻击者向有漏洞的系统发送了特制的BER编码数据的话,就可以触发缓冲区溢出,导致拒绝服务或执行任意指令。 Linux kernel 2.6.x Linux kernel 2.4.x Debian ------ Debian已经为此发布了一个安全公告(DSA-1592-2)以及相应补丁: DSA-1592-2:N...
CVE-2008-2575
cbrPager before 0.9.17 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a 1 ZIP aka .cbz or 2 RAR aka .cbr archive filename...
Matt Wright guestbook.pl Arbitrary Command Execution
The Matt Wright guestbook.pl 'Matt Wright guestbook.pl Arbitrary Command Execution', 'Description' = %q The Matt Wright guestbook.pl 'aushack' , 'License' = MSFLICENSE, 'References' = 'CVE...
lv Arbitrary Command Execution Vulnerability
Overview lv contains a vulnerability of reading and running a .lv file in the current directry. Impact An attacker could execute arbitrary command as other users with the privilege of the user running lv. Solution Please refer to the 'Vendor Information' section of this advisory for official...
LHA Arbitrary Command Execution Vulnerability with Shell Metacharacter in Directory Name
Overview LHA is vulnerable to arbitrary command execution due to improper handling of directory names cantaining shell metacharacters. Impact An remote attacker could execute arbitrary command. Solution Please refer to the 'Vendor Information' section for official remediation and take appropriate...
Ruby XMLRPC Arbitrary Command Execution Vulnerability
Overview utils.rb in The Ruby XMLRPC server sets an insecure default value for the publicinstancemethods function, which could cause the highly privileged function to be exposed. Impact An attacker could execute arbitrary command on the system running Ruby XMLRPC. Solution Please refer to the...
Sql injection
SQL injection vulnerability in Kostenloses Linkmanagementscript allows remote attackers to execute arbitrary SQL commands via the id parameter to 1 view.php and 2 topview.php...
Red Hat Administration Server (redhat-ds-admin) Multiple Remote Vulnerabilities
The remote host is running RedHat or Fedora Directory Server Admin Service. The version of this software installed on the remote host is vulnerable to remote command execution flaw through the argument 'admurl' of the script '/bin/admin/admin/bin/download'. A malicious user could exploit this fla...
Fedora 8 : comix-3.6.4-6.fc8 (2008-2981)
Several security flaws are reported against comix 3.6.4. One issue is that comix uses os.popen to execute external commands without handling filenames properly. This may allow malicios users to execute arbitrary commands by opening some files with crafted names. This issue is now identified as...
Orbit Downloader URL处理栈溢出漏洞
BUGTRAQ ID: 28541 CVECAN ID: CVE-2008-1602 Orbit Downloader是用于从视频共享网站下载流媒体的下载管理器。 Orbit downloader没有正确地将URL ASCII字符串转换为Unicode,如果用户从特制的URL下载了文件的话就可能导致执行任意指令。 如果Orbit无法下载文件的话,就会在通知区域弹出气球控制: /----------- .text:004A56D0 sub4A56D0 proc near ; CODE XREF: sub42AAC0+321 p .text:004A56D0 ; sub439610+321 ...
CVE-2008-1568
comix 3.6.4 allows attackers to execute arbitrary commands via a filename containing shell metacharacters that are not properly sanitized when executing the rar, unrar, or jpegtran programs...
CVE-2008-1568
comix 3.6.4 allows attackers to execute arbitrary commands via a filename containing shell metacharacters that are not properly sanitized when executing the rar, unrar, or jpegtran programs...
CVE-2008-1568
Summary: CVE-2008-1568 affects the Comix GTK comic viewer. The vulnerability arises when filenames containing shell metacharacters are passed to the external tools rar, unrar, or jpegtran, allowing arbitrary command execution. A related issue (CVE-2008-1796) concerns directory name predictability...