Sql injection

SQL injection vulnerability in tr.php in YourFreeWorld Classifieds Hosting Script allows remote attackers to execute arbitrary SQL commands via the id parameter...

JVN#20502807 Snoopy command injection vulnerability

Snoopy is an open source PHP library. Snoopy does not properly handle user-input data. This causes a vulnerability which may allow a remote attacker to execute an arbitrary command. Impact An arbitrary command could be executed with the privilege of the server where Snoopy runs. Solution Update t...

viralator

The CGI 'viralator.cgi' is installed. Some versions of this CGI are don't check properly the user input and allow anyone to execute arbitrary commands with the privileges of the web server No flaw was tested. Your script might be a safe version. Solutions : Upgrade this script to version 0.9pre2 ...

EMC AlphaStor Library Manager Arbitrary Command Execution

EMC AlphaStor Library Manager is prone to a remote command-injection vulnerability because the application fails to properly sanitize user-supplied input. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...

FreeBSD Ports: coppermine

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

EMC AlphaStor Device Manager Arbitrary Command Execution

EMC AlphaStor Device Manager is prone to a remote command-injection vulnerability because the application fails to properly sanitize user-supplied input. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...

DEBIAN-CVE-2008-3459

Unspecified vulnerability in OpenVPN 2.1-beta14 through 2.1-rc8, when running on non-Windows systems, allows remote servers to execute arbitrary commands via crafted 1 lladdr and 2 iproute configuration directives, probably related to shell metacharacters...

Avaya产品WEB管理接口输入验证漏洞

BUGTRAQ ID: 29939,29938 Avaya是一家提供IP通信以及面向企业的通信网络设计、建造、部署和管理的厂商。 Avaya的Communication Manager、Message Storage Server和Avaya SIP Enablement Services 产品的WEB管理接口存在输入验证错误，如果远程攻击者向上述产品的WEB管理接口提交了恶意请求的话，就可能导致读取敏感信息或执行任意指令。 0 AVAYA Communication Manager 4.x AVAYA Communication Manager 3.1.x AVAYA SIP...

[ GLSA 200801-21 ] Xdg-Utils: Arbitrary command execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200801-21 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - -...

DTSA-72-1 hplip - arbitrary command execution

Bulletin has no description...

Microsoft Visual Studio 6.0 - 'PDWizard.ocx' Remote Command Execution

------------------------------------------------------------------------------------------------------ Microsoft Visual Studio 6.0 PDWizard PDWizard.ocx url: http://www.microsoft.com author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was written for educationa...

Fedora Core 6 : vim-7.0.235-1.fc6 (2007-492)

This update fixes several issues where opening a malicious file with vim can run an arbitrary command via modeline Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format i...

Microsoft Word 2000 Unspecified Code Execution Exploit (0day)

No description provided by source. use at your own risk + Title: Microsoft Word 2000 Unspecified Code Execution Vulnerability Exploit 0-day + code by xCuter BongGoo Kang - [email protected] + Critical: High Critical ...

Microsoft Word 2000 - Code Execution

Microsoft Word 2000 - Code Execution use at your own risk + Title: Microsoft Word 2000 Unspecified Code Execution Vulnerability Exploit 0-day + code by xCuter BongGoo Kang - [email protected] + Critical: High Critical + Impact: MS Word 2000 - Could Allow Arbitrary Command Execution MS word 20...

WinZip命令行远程缓冲区溢出漏洞

WinZip是一款流行的解压缩程序。 WinZip处理命令行参数存在缓冲区溢出，远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击，可能执行任意指令。 提交类似的命令，可导致WinZip产生缓冲区溢出： Winzip32.exe "A" x 5002 WinZip 9.0 SR-1 目前没有解决方案： http://www.winzip.com/...

Novell ZENworks Asset Management MSG.DLL远程整数溢出漏洞

Novell Inc's ZENworks是一套用于自动IT管理和在各个电脑资源中进行商务处理的工具。 Novell Inc's ZENworks Asset Management存在一个整数溢出，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 当处理特殊的包发送给Task服务器或者Collection服务守护程序时存在堆溢出，当分配内存给远程提供的数据时可以应用程序进程权限执行任意指令。 Novell ZENworks Asset Management 7.0 SP1 补丁下载： Novell ZENworks Asset Management 7.0 SP1 Novell...

IBM Tivoli Storage Manager多个远程安全内存访问拷贝漏洞

Tivoli Storage Manager是一种遵循ANSI SAN标准的可扩展解决方案，用于发现、监控和管理企业SAN架构组件，并可分配和自动操纵企业的附加磁盘存储资源。 Tivoli Storage Manager服务在处理发送到TCP/1500端口的消息时存在多个内存访问拷贝漏洞，远程攻击者可能利用这些漏洞导致服务崩溃或执行任意指令。 能够触发漏洞的消息格式为indexsize，其中index字段指定了到消息体特定字段的整数偏移，size字段指定了index字段的大小。由于没有验证index字段，因此攻击者可以强制服务读过报文的末尾，到达未分配的内存，导致拒绝服务。...

Sisfo Kampus文件包含及目录遍历漏洞

Sisfo Kampus是一款系统信息管理系统。 Sisfo Kampus在处理用户请求时存在输入验证漏洞，远程攻击者可能利用此漏洞在服务器上以Web进程权限执行任意命令。 Sisfo Kampus的index.php和print.php脚本没有过滤slnt参数的输入，允许攻击者通过包含本地或外部资源的任意文件导致执行任意代码。 index.php中漏洞代码如下： -------------------------Line 27----------------------------- ?php if $exec=='main.php' &&...

MailEnable IMAP服务未明缓冲区溢出漏洞

MailEnable是一款流行的邮件服务程序. MailEnable IMAP服务存在未明缓冲区溢出，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 目前没有详细漏洞细节提供。 MailEnable MailEnable Professional 2.0-2.32 MailEnable MailEnable Professional 1.9-1.82 MailEnable MailEnable Enterprise Edition 2.0-2.32 MailEnable MailEnable Enterprise Edition 1.1-1.30 补丁下载：...

Sky Software FileView ActiveX control allows arbitrary command execution via unsafe methods

Overview The Sky Software FileView ActiveX control contains unsafe methods, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The Sky Software FileView object is an ActiveX control that is provided with several applications, such as...