[EXPL] Sun Solaris rpc.ypupdated Arbitrary Command Execution (Exploit)

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

Versant Connection Services Daemon Arbitrary Command Execution

The version of the Versant Object Database installed on the remote host accepts input supplied by the client and uses it to launch needed programs or locate database files. An unauthenticated, remote attacker can leverage this issue to execute arbitrary commands on the affected host subject to th...

Programmer's Notepad ctags栈缓冲区溢出漏洞

BUGTRAQ ID: 28119 Programmer's Notepad是免费的开源文本编辑器。 Programmer's Notepad在处理ctags输出时存在栈溢出漏洞，攻击者可能利用此漏洞控制用户系统。 如果用户受骗打开了特制的.c文件并使用了Jump To对话框的话，就可以触发这个溢出，导致执行任意指令。 pnotepad.org Programmer's Notepad 2.0.6.1 pnotepad.org ------------ 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

Microsoft Works File Converter index table vulnerability

Added: 02/22/2008 CVE: CVE-2008-0105 BID: 27658 OSVDB: 41458 Background The Microsoft Works File Converter allows Microsoft Office to open Microsoft Works files. Problem A buffer overflow vulnerability in the Microsoft Works File Converter allows arbitrary command execution when a user opens a .w...

Microsoft Works File Converter index table vulnerability

Added: 02/22/2008 CVE: CVE-2008-0105 BID: 27658 OSVDB: 41458 Background The Microsoft Works File Converter allows Microsoft Office to open Microsoft Works files. Problem A buffer overflow vulnerability in the Microsoft Works File Converter allows arbitrary command execution when a user opens a .w...

Microsoft Works File Converter index table vulnerability

Added: 02/22/2008 CVE: CVE-2008-0105 BID: 27658 OSVDB: 41458 Background The Microsoft Works File Converter allows Microsoft Office to open Microsoft Works files. Problem A buffer overflow vulnerability in the Microsoft Works File Converter allows arbitrary command execution when a user opens a .w...

Microsoft Works File Converter field length buffer overflow

Added: 02/19/2008 CVE: CVE-2008-0108 BID: 27659 OSVDB: 41459 Background The Microsoft Works File Converter allows Microsoft Office to open Microsoft Works files. Problem A buffer overflow vulnerability in the Microsoft Works File Converter allows arbitrary command execution when a user opens a .w...

f5big-xsrf.txt

F5 BIG-IP Web Management Console CSRF Product: F5 BIG-IP http://www.f5.com/products/big-ip/ By design the F5 BIG-IP web management interface allows a logged-in user with Resource Manager or Administrator privileges to execute an arbitrary bigpipe shell command through the web "Console" feature. I...

CVE-2008-0386

Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a URL argument to 1 xdg-open or 2 xdg-email...

GLSA-200801-21 : Xdg-Utils: Arbitrary command execution

The remote host is affected by the vulnerability described in GLSA-200801-21 Xdg-Utils: Arbitrary command execution Miroslav Lichvar discovered that the 'xdg-open' and 'xdg-email' shell scripts do not properly sanitize their input before processing it. Impact : A remote attacker could entice a us...

Xdg-Utils: Arbitrary command execution

Background Xdg-Utils is a set of tools allowing all applications to easily integrate with the Free Desktop configuration. Description Miroslav Lichvar discovered that the "xdg-open" and "xdg-email" shell scripts do not properly sanitize their input before processing it. Impact A remote attacker...

Namo Web Editor NamoInstaller.dll ActiveX控件任意命令执行漏洞

BUGTRAQ ID: 27453 Namo Web Editor是一个软件包，允许Web应用人员为网站用户提供创建文档、上传文件等支持。 Namo Web Editor的ActiveX控件实现上存在漏洞，远程攻击者可能利用此漏洞在用户系统上执行任意命令。 Namo Web Editor软件包中所安装的NamoInstaller.NamoInstall.1 ActiveX控件（NamoInstaller.dll）没有正确地验证对Install方式的输入参数，如果用户受骗访问了恶意网页并向该方式传送了恶意参数的话，就可能导致下载并执行恶意程序。 SJ NAMO Web Editor...

[waraxe-2008-SA#065] - Remote Shell Command Execution in Coppermine 1.4.14

waraxe-2008-SA065 - Remote Shell Command Execution in Coppermine 1.4.14 =============================================================================== Author: Janek Vind "waraxe" Date: 30. January 2008 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-65.html Target software descriptio...

Smart Publisher index.php filedata Parameter Arbitrary Command Execution

The remote host is running Smart Publisher, an open source application for website publishing. The version of Smart Publisher on the remote host fails to sanitize input to the 'filedata' parameter of the 'index.php' script before using it in an 'eval' statement in the 'admin/op/disp.php' script t...

Microsoft Excel rtAFDesc record invalid pointer access

Added: 01/17/2008 CVE: CVE-2008-0081 BID: 27305 OSVDB: 40344 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows platforms. Problem Microsoft Excel references an uninitialized pointer if a spreadsheet contains an improperly placed...

Microsoft Excel rtAFDesc record invalid pointer access

Added: 01/17/2008 CVE: CVE-2008-0081 BID: 27305 OSVDB: 40344 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows platforms. Problem Microsoft Excel references an uninitialized pointer if a spreadsheet contains an improperly placed...

Debian Security Advisory DSA 760-1 (ekg)

The remote host is missing an update to ekg announced via advisory DSA 760-1. Several vulnerabilities have been discovered in ekg, a console Gadu Gadu client, an instant messaging program. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities: CVE-2005-1850...

Debian Security Advisory DSA 746-1 (phpgroupware)

The remote host is missing an update to phpgroupware announced via advisory DSA 746-1. OpenVAS Vulnerability Test $Id: deb7461.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 746-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 1075-1 (awstats)

The remote host is missing an update to awstats announced via advisory DSA 1075-1. Hendrik Weimer discovered that awstats can execute arbitrary commands under the user id the web-server runs when users are allowed to supply arbitrary configuration files. Even though, this bug was referenced in DS...

Debian: Security Advisory (DSA-760-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...