8690 matches found
in.fingerd Pipe Input Arbitrary Command Execution
It is possible to force the remote finger daemon to execute arbitrary commands by issuing requests like : finger |commandtoexecute@target An attacker may use this bug to gain a shell on this host. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid10126; scriptversion...
HylaFAX faxsurvey Arbitrary Command Execution
The 'faxsurvey' CGI does not sanitize input to the query string. A remote attacker could exploit this to execute arbitrary commands. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid10067; scriptversion"1.45";...
WebGais websendmail CGI Arbitrary Command Execution
The 'websendmail' program, part of Webgais, appears to be installed on the remote host. This CGI script has a well-known security flaw that lets an attacker execute arbitrary commands with the privileges of the http daemon usually root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, In...
Multiple Vendor info2www CGI Arbitrary Command Execution
The 'info2www' CGI is installed. This CGI has a well known security flaw that lets an attacker execute arbitrary commands with the privileges of the http daemon usually root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc';...
IRIX handler CGI Arbitrary Command Execution
The 'handler' cgi is installed. This CGI has a well known security flaw that lets anyone execute arbitrary commands with the privileges of the http daemon root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Solaris 2.67.08 - netpr Local Buffer Overflow (1)
Solaris 2.67.08 - netpr Local Buffer Overflow 1 // source: https://www.securityfocus.com/bid/1200/info A buffer overrun exists in the 'netpr' program, part of the SUNWpcu LP package included with Solaris, from Sun Microsystems. Versions of netpr on Solaris 2.6 and 7, on both Sparc and x86 have be...
Solaris 2.6/7.0/8 - 'netpr' Local Buffer Overflow (2)
// source: https://www.securityfocus.com/bid/1200/info A buffer overrun exists in the 'netpr' program, part of the SUNWpcu LP package included with Solaris, from Sun Microsystems. Versions of netpr on Solaris 2.6 and 7, on both Sparc and x86 have been confirmed as being vulnerable. The overflow i...
CVE-1999-0349
A buffer overflow in the FTP list ls command in IIS allows remote attackers to conduct a denial of service and, in some cases, execute arbitrary commands...
[SECURITY] New versions of hylafax avoid security problem
We have received a report that the faxsurvey script that was included in former releases of hylafax would execute arbitrary commands. Please be warned that this package doesnt contain a fix, the offending script is just removed. We recommend you upgrade your hylafax-doc package immediately. dpkg ...
textcounter.pl 1.2 - Arbitrary Command Execution
textcounter.pl 1.2 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/2265/info textcounter.pl is distributed through Matt's Scripts archive, and provides added features to httpd servers such as counters, guestbooks, and http cookie management. Due to insufficient checking of...
ISC BIND (Multiple OSes) - Remote Buffer Overflow (2)
/ source: https://www.securityfocus.com/bid/134/info A buffer overflow exists in certain versions of BIND, the nameserver daemon currently maintained by the Internet Software Consortium ISC. BIND fails to properly bound the data recieved when processing an inverse query. Upon a memory copy,...
ISC BIND (Multiple OSes) - Remote Buffer Overflow (2)
ISC BIND Multiple OSes - Remote Buffer Overflow 2 / source: https://www.securityfocus.com/bid/134/info A buffer overflow exists in certain versions of BIND, the nameserver daemon currently maintained by the Internet Software Consortium ISC. BIND fails to properly bound the data recieved when...
ISC BIND (LinuxBSD) - Remote Buffer Overflow (1)
ISC BIND LinuxBSD - Remote Buffer Overflow 1 / source: https://www.securityfocus.com/bid/134/info A buffer overflow exists in certain versions of BIND, the nameserver daemon currently maintained by the Internet Software Consortium ISC. BIND fails to properly bound the data recieved when processin...
CVE-1999-0958
sudo 1.5.x allows local users to execute arbitrary commands via a .. dot dot attack...
CVE-1999-0021
Arbitrary command execution via buffer overflow in Count.cgi wwwcount cgi-bin program...
AZL-6421 CVE-1999-0150 affecting package finger for versions less than 0.17-4
The Perl fingerd program allows arbitrary command execution from remote users...
PT-1997-1065 · Perl · Perl Fingerd
Name of the Vulnerable Software and Affected Versions: Perl fingerd affected versions not specified Description: The issue allows arbitrary command execution from remote users, potentially leading to unauthorized access and control. Recommendations: At the moment, there is no information about a...
CVE-1999-0037
Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail...
SGI IRIX 6.4 - rmail Local Privilege Escalation
SGI IRIX 6.4 - rmail Local Privilege Escalation source: https://www.securityfocus.com/bid/460/info A vulnerability exists in the rmail utility, included by SGI with it's Irix operating system. By failing to sanity check the contents of an environment variable, arbitrary commands may be executed...
OReilly WebSite 1.x2.0 - win-c-sample.exe Buffer Overflow
OReilly WebSite 1.x2.0 - win-c-sample.exe Buffer Overflow source: https://www.securityfocus.com/bid/2078/info O'Reilly WebSite Pro is a Windows 95/NT Web Server package. Versions 2.0 and below contained a vulnerable sample script, win-c-sample.exe, placed by default in /cgi-shl/ off the web root...