246 matches found
CVE-2009-5053
Unspecified vulnerability in Smarty before 3.0.0 beta 6 allows remote attackers to execute arbitrary PHP code by injecting this code into a cache file...
CVE-2009-5053
Unspecified vulnerability in Smarty before 3.0.0 beta 6 allows remote attackers to execute arbitrary PHP code by injecting this code into a cache file...
cups: latent privilege escalation vulnerability
The cupsFileOpen function in CUPS before 1.4.4 allows local users, with lp group membership, to overwrite arbitrary files via a symlink attack on the 1 /var/cache/cups/remote.cache or 2 /var/cache/cups/job.cache file...
AIX 610002 : U837001
The remote host is missing AIX PTF U837001 which is related to the security of the package bos.net.nfs.cachefs You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...
DedeCmsV5. 6 local contains another use-vulnerability warning-the black bar safety net
Article author: jannock Continued local contains include/arc.datalist.class.php $codefile = isset$needCode ? $needCode : $cfgsoftlang; iffileexistsDEDEINC.'/ code/datalist.'.$ codefile.'. inc' requireonceDEDEINC.'/ code/datalist.'.$ codefile.'. inc'; Contains this file can contain . inc file type...
UBUNTU-CVE-2010-0300
cache.c in ircd-ratbox before 2.2.9 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a HELP command...
fuzzylime cms <= 3.03a Local Inclusion / Arbitrary File Corruption PoC
Exploit for unknown platform in category web applications ====================================================================== fuzzylime cms = 3.03a Local Inclusion / Arbitrary File Corruption PoC ======================================================================...
CVE-2008-5690
The Kerberos credential renewal feature in Sun Solaris 8, 9, and 10, and OpenSolaris build snv01 through snv104, allows local users to cause a denial of service authentication failure via unspecified vectors related to incorrect cache file permissions, and lack of credential storage by the...
Design/Logic Flaw
The Kerberos credential renewal feature in Sun Solaris 8, 9, and 10, and OpenSolaris build snv01 through snv104, allows local users to cause a denial of service authentication failure via unspecified vectors related to incorrect cache file permissions, and lack of credential storage by the...
CVE-2008-5690
The Kerberos credential renewal feature in Sun Solaris 8, 9, and 10, and OpenSolaris build snv01 through snv104, allows local users to cause a denial of service authentication failure via unspecified vectors related to incorrect cache file permissions, and lack of credential storage by the...
Opera Stored Cross Site Scripting Vulnerability
====================================================== ================= = Opera Stored Cross Site Scripting Vulnerability = = Vendor Website: = http://www.opera.com = = Affected Version: = -- All desktop versions = = Public disclosure on 22nd October 2008 =...
Opera <= 9.60 Stored Cross Site Scripting Vulnerability
Exploit for unknown platform in category remote exploits ======================================================= Opera = 9.60 Stored Cross Site Scripting Vulnerability ======================================================= ======================================================================= =...
opera-storedxss.txt
======================================================================= = Opera Stored Cross Site Scripting Vulnerability = = Vendor Website: = http://www.opera.com = = Affected Version: = -- All desktop versions = = Public disclosure on 22nd October 2008 =...
Opera 9.60 - Persistent Cross-Site Scripting
Opera 9.60 - Persistent Cross-Site Scripting ======================================================================= = Opera Stored Cross Site Scripting Vulnerability = = Vendor Website: = http://www.opera.com = = Affected Version: = -- All desktop versions = = Public disclosure on 22nd October...
TCExam 4.0.011 - 'SessionUserLang' Shell Injection
resource = array; // set selecteed language $this-language = strtoupper$language; // set filename for cache $this-cachefile = $cachefile; if fileexists$this-cachefile // read data from cache requireonce$this-cachefile; $this-resource = $tmx; else if !empty$this-cachefile // open cache file...
CVE-2006-5973
Off-by-one buffer overflow in Dovecot 1.0test53 through 1.0.rc14, and possibly other versions, when index files are used and mmapdisable is set to "yes," allows remote authenticated IMAP or POP3 users to cause a denial of service crash via unspecified vectors involving the cache file...
CVE-2006-5973
Off-by-one buffer overflow in Dovecot 1.0test53 through 1.0.rc14, and possibly other versions, when index files are used and mmapdisable is set to "yes," allows remote authenticated IMAP or POP3 users to cause a denial of service crash via unspecified vectors involving the cache file...
CVE-2003-1063
The CVE-2003-1063 entry concerns Solaris 2.6/7 cachefs patches (105693-13, 108800-02, 105694-13, 108801-02) that overwrite inetd.conf. This may silently reenable services and allow remote attackers to bypass the intended security policy. Affected component: cachefs daemon on Solaris; root cause: ...
CVE-2003-0887
ez-ipupdate 3.0.11b7 and earlier creates insecure temporary cache files, which allows local users to conduct unauthorized operations via a symlink attack on the ez-ipupdate.cache file...
Cache Disclosure Leads to MYCOMPUTER Zone and Remote Compromise
Cache Disclosure Leads to MYCOMPUTER Zone and Remote Compromise tested OS:WinXp, CN version Microsoft Internet Explorer v6.Sp1; up-to-date on 2003/11/16 overview By combining cache file disclosure and several other unpatched vulnerabilties, an malicious INTERNET page can reach MYCOMPUTER zone. Th...