Lucene search
K

237 matches found

OSV
OSV
added 2005/11/21 12:0 a.m.16 views

DSA-811-2 common-lisp-controller - design error

Bulletin has no description...

4.6CVSS6.1AI score0.0036EPSS
Exploits0
Cvelist
Cvelist
added 2005/10/23 4:0 a.m.22 views

CVE-2005-3288

Mailsite Express allows remote attackers to upload and execute files with executable extensions such as ASP by attaching the file using the "compose page" feature, then accessing the file from the cache directory before saving or sending the message...

7AI score0.01309EPSS
Exploits0References1
Cvelist
Cvelist
added 2005/10/23 4:0 a.m.20 views

CVE-2005-3287

Incomplete blacklist vulnerability in Mailsite Express allows remote attackers to upload and possibly execute files via attachments with executable extensions such as ASPX, which are not converted to .TXT like other dangerous extensions, and which can be directly requested from the cache director...

7AI score0.00968EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2005/10/23 12:0 a.m.4 views

PT-2005-4099 · Ftgate · Mailsite Express

Name of the Vulnerable Software and Affected Versions: Mailsite Express affected versions not specified Description: The issue allows remote attackers to upload and execute files with executable extensions, such as ASP, by utilizing the compose page feature. Attackers can attach the file and then...

5CVSS6.7AI score0.01309EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2005/09/16 10:3 p.m.23 views

CVE-2005-2657

Unknown vulnerability in common-lisp-controller 4.18 and earlier allows local users to gain privileges by compiling arbitrary code in the cache directory, which is executed by another user if the user has not run Common Lisp before...

4.6CVSS6.2AI score0.0036EPSS
Exploits0References1
NVD
NVD
added 2005/09/16 10:3 p.m.20 views

CVE-2005-2657

Unknown vulnerability in common-lisp-controller 4.18 and earlier allows local users to gain privileges by compiling arbitrary code in the cache directory, which is executed by another user if the user has not run Common Lisp before...

4.6CVSS6.7AI score0.0036EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/09/16 4:0 a.m.34 views

CVE-2005-2657

Unknown vulnerability in common-lisp-controller 4.18 and earlier allows local users to gain privileges by compiling arbitrary code in the cache directory, which is executed by another user if the user has not run Common Lisp before...

6.6AI score0.0036EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2005/09/16 4:0 a.m.41 views

CVE-2005-2657

Removed by vendor...

4.6CVSS6.7AI score0.0036EPSS
Exploits0
securityvulns
securityvulns
added 2005/01/20 12:0 a.m.24 views

RealPlayer Arbitrary File Deletion Vulnerability (#NISR19012005f)

NGSSoftware Insight Security Research Advisory Name: RealPlayer Arbitrary File Deletion Vulnerability Systems Affected: RealPlayer 10.5 6.0.12.1040 and older Severity: High Vendor URL: http://www.real.com/ Author: John Heasman [email protected] Date of Public Advisory: 19th January 2004 Adviso...

6.9AI score
Exploits0
NVD
NVD
added 2004/01/20 5:0 a.m.21 views

CVE-2003-1028

The download function of Internet Explorer 6 SP1 allows remote attackers to obtain the cache directory name via an HTTP response with an invalid ContentType and a .htm file, which could allow remote attackers to bypass security mechanisms that rely on random names, as demonstrated by threadid1000...

5CVSS6.7AI score0.19052EPSS
Exploits0References6
Cvelist
Cvelist
added 2004/01/08 5:0 a.m.19 views

CVE-2003-1028

The download function of Internet Explorer 6 SP1 allows remote attackers to obtain the cache directory name via an HTTP response with an invalid ContentType and a .htm file, which could allow remote attackers to bypass security mechanisms that rely on random names, as demonstrated by threadid1000...

6.7AI score0.19052EPSS
Exploits0References6
CVE
CVE
added 2004/01/08 5:0 a.m.64 views

CVE-2003-1028

CVE-2003-1028 : The vulnerability lies in the download function of Internet Explorer 6 SP1, where an HTTP response with an invalid Content-Type and a .htm file can disclose the cache directory name. This information disclosure could allow remote attackers to bypass security measures that rely on ...

5CVSS7.1AI score0.19052EPSS
Exploits0References6Affected Software2
securityvulns
securityvulns
added 2003/11/26 12:0 a.m.18 views

Note for "Invalid ContentType may disclose cache directory"

Note for "Invalid ContentType may disclose cache directory" This vulnerability"Invalid ContentType may disclose cache directory" doesn't work on all systems. "Invalid ContentType may disclose cache directory", at http://www.safecenter.net/UMBRELLAWEBV4/threadid10008/ Please note that execdror6 an...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2003/11/26 12:0 a.m.21 views

Invalid ContentType may disclose cache directory

Invalid ContentType may disclose cache directory tested OS:WinXp, CN version Microsoft Internet Explorer v6.Sp1; up-to-date on 2003/11/16 overview The problem lies in the download function of Internet Explorer. This can be exploited by malicious web pages to get cache directory including random...

6.6AI score
Exploits0
Exploit DB
Exploit DB
added 2001/11/22 12:0 a.m.22 views

ibm informix Web Datablade 3.x/4.1 - Directory Traversal

source: https://www.securityfocus.com/bid/3575/info Informix is an enterprise database distributed and maintained by IBM. The Web Datablade Module for Informix SQL is used to provide wbBinaries for storing large binary resources such as images, sounds, etc. The Web Datablade Module for Informix S...

7.4AI score
Exploits0
NVD
NVD
added 2001/08/02 4:0 a.m.22 views

CVE-2001-0610

kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink attack in the kfm cache directory in /tmp...

4.6CVSS6.5AI score0.00562EPSS
Exploits0References2
Cvelist
Cvelist
added 2001/07/27 4:0 a.m.26 views

CVE-2001-0610

kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink attack in the kfm cache directory in /tmp...

6.5AI score0.00562EPSS
Exploits0References2
Rows per page
Query Builder