Lucene search
K

449 matches found

Tenable Nessus
Tenable Nessus
added 2009/02/09 12:0 a.m.30 views

GLSA-200902-01 : sudo: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-200902-01 sudo: Privilege escalation Harald Koenig discovered that sudo incorrectly handles group specifications in RunasAlias and related entries when a group is specified in the list using %group syntax, to allow a user to run...

7.8CVSS7.8AI score0.00406EPSS
Exploits1References2
Prion
Prion
added 2007/04/16 10:19 p.m.14 views

Directory traversal

Directory traversal vulnerability in /console in the Management Console in webMethods Glue 6.5.1 and earlier allows remote attackers to read arbitrary system files via a .. dot dot in the resource parameter...

5CVSS7.1AI score0.03828EPSS
Exploits1References9Affected Software1
exploitpack
exploitpack
added 2006/10/12 12:0 a.m.16 views

FreeWPS 2.11 - upload.php Remote Command Execution

FreeWPS 2.11 - upload.php Remote Command Execution source: https://www.securityfocus.com/bid/20494/info FreeWPS is prone to a remote command-execution vulnerability. Attackers can exploit this issue to execute arbitrary system commands with the privileges of the webserver process. FreeWPS version...

7.7AI score
Exploits0
Packet Storm
Packet Storm
added 2006/02/14 12:0 a.m.42 views

dotProject-2.0.1.txt

dotproject Date: Feb. 14 2006 Vendor: dotproject.net contacted Description: dotProject is a volunteer supported Project Management application. Details: The 'protection.php' script does not properly validate user-supplied input in the 'siteurl' parameter. Some user-supplied input is not checked...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2005/07/28 12:0 a.m.54 views

HPRadiaManagement.txt

NGSSoftware Insight Security Research Advisory Name: HP OpenView Radia Management Agent remote command execution via directory traversal Systems Affected: HP OpenView Radia Management Portal versions 2.x and 1.x running Radia Management Agent Severity: High Vendor URL: http://www.hp.com/ Authors:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/04/19 12:0 a.m.65 views

UTempter 0.5.x - Multiple Local Vulnerabilities

source: https://www.securityfocus.com/bid/10178/info It has been reported that utempter is affected by multiple local vulnerabilities. The first issue is due to an input validation error that causes the application to exit improperly; facilitating symbolic link attacks. The second issue is due to...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2004/03/25 12:0 a.m.32 views

[NT] Nexgen FTP Server Directory Traversal Vulnerability

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2003/03/03 12:0 a.m.20 views

Webchat 0.77 - 'Defines.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/7000/info Webchat is prone to an issue that may allow remote attackers to include files located on attacker-controlled servers. This vulnerability is as a result of insufficient sanitization performed on remote user-supplied data. Under some circumstances...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2002/11/21 12:0 a.m.13 views

Symantec Java! JustInTime Compiler 210.65 - Command Execution

Symantec Java! JustInTime Compiler 210.65 - Command Execution source: https://www.securityfocus.com/bid/6222/info A vulnerability has been discovered in the Java! JustInTime compiled used by Netscape Communicator, related to the generation of Intel instructions from specially constructed Java...

0.7AI score
Exploits0
Rows per page
Query Builder