Дырка в Apache (mod_rewrite)

При использовании modrewrite если результат RewriteRul содержит шаблоны файлов, то атакующий может обратиться к любому файлу в системе...

SuSE Linux 6.36.4 - Installed Package Disclosure

SuSE Linux 6.36.4 - Installed Package Disclosure source: https://www.securityfocus.com/bid/1707/info By submitting a specific url to the web server "http://hosts.any/doc/packages/" , any user from any host may obtain a list of packages installed on a S.u.S.E 6.3 or 6.4 system. This problem is due...

[COVERT-2000-06] Initialized Data Overflow in Xlock

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Network Associates, Inc. COVERT Labs Security Advisory May 29, 2000 Initialized Data Overflow in Xlock COVERT-2000-06 o Synopsis An implementation vulnerability in xlock allows global variables in the initialized data section of memory to be...

Microsoft IIS perl.exe HTTP Path Disclosure

It was possible to obtain the physical location of a virtual web directory of this host by issuing a request for a non-existent file with an IISAPI-registered extension. An attacker may use this flaw to gain more information about the remote host, and hence make more focused attacks. %NASLMINLEVE...

SGI IRIX 6.4 - ioconfig Local Privilege Escalation

SGI IRIX 6.4 - ioconfig Local Privilege Escalation source: https://www.securityfocus.com/bid/213/info A vulnerability exists in the ioconfig program, as shipping with IRIX 6.4 S2MP from Silicon Graphics, Inc. This program is only available on Irix 6.4 for the Origin/Onyx2. Other machines running...

Slackware Linux 3.4 - 'liloconfig-color' Temporary File

source: https://www.securityfocus.com/bid/77/info liloconfig-color creates the file /tmp/reply insecurely and follows symbolic links. An attacker can create a symbolic link from /tmp/reply to any file and wait for root to run the program. This will clober the target file. The file created has...