2841 matches found
MS06-071 Microsoft Internet Explorer XML Core Services HTTP Request Handling
This module exploits a code execution vulnerability in Microsoft XML Core Services which exists in the XMLHTTP ActiveX control. This module is the modified version of http://www.milw0rm.com/exploits/2743 - credit to str0ke. This module has been successfully tested on Windows 2000 SP4, Windows XP...
CVE-2007-5574
PHP remote file inclusion vulnerability in djpage.php in PHPDJ 0.5 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter...
CVE-2007-5313
PHP remote file inclusion vulnerability in install/config.php in Picturesolution 2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path parameter...
CVE-2007-4842
Directory traversal vulnerability in Enriva Development Magellan Explorer 3.32 build 2305 and earlier allows remote FTP servers to create or overwrite arbitrary files via a .. dot dot in a filename. NOTE: this can be leveraged for code execution by writing to a Startup folder...
Microsoft Windows Media Player Remote Skin Header Code Execution Vulnerability
Description Microsoft Windows Media Player is prone to a remote code-execution vulnerability when handling specially crafted skin files. Attackers exploit this issue by coercing unsuspecting users to download and open Windows Media Player skin files WMZ or WMD files. Note that users must attempt ...
MS07-040: Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212) (uncredentialed check)
The remote web server is running a version of the ASP.NET framework that contains multiple vulnerabilities : - A PE Loader vulnerability could allow an attacker to execute arbitrary code with the privilege of the logged-on user. - A ASP.NET NULL byte termination vulnerability could allow an...
WordPress 2.1.1 - Arbitrary Command Execution
WordPress 2.1.1 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/22797/info An attacker compromised the source code for Wordpress 2.1.1 and altered it to include a malicious backdoor. This backdoor introduces a code-execution vulnerability that will let remote users inject...
WordPress Core 2.1.1 - '/wp-includes/theme.php?iz' Arbitrary Command Execution
source: https://www.securityfocus.com/bid/22797/info An attacker compromised the source code for Wordpress 2.1.1 and altered it to include a malicious backdoor. This backdoor introduces a code-execution vulnerability that will let remote users inject PHP code or execute operating system commands...
SUSE-SA:2006:045: freetype2
The remote host is missing the patch for the advisory SUSE-SA:2006:045 freetype2. This security update fixes crashes in the PCF handling of freetype2 which might be used to crash freetype2 using applications or even to execute code in them. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Thi...
Security Update for Office 2003 (KB929064)
A security vulnerability exists in Microsoft Office 2003 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Security Update for Outlook 2002 (KB921594)
This update resolves a security vulnerability in Microsoft Outlook 2002 that could enable a remote user to execute code on a computer that is running Outlook 2002...
logahead UNU edition 1.0 Remote Upload File / Code Execution Vuln
No description provided by source. -=--------------------ADVISORY-------------------=- logahead UNU edition 1.0 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: logahead UNU edition -=+ Version: 1.0 -=+ Vendor's URL: http://typo.i24.cc/logahea...
Microsoft Agent ActiveX Control Remote Code Execution Vulnerability
Description The Microsoft Agent ActiveX control is prone to remote code execution. An attacker could exploit this issue to execute code in the context of the user visiting a malicious web page. Technologies Affected Avaya S8100 Media Servers Avaya S8100 Media Servers R10 Avaya S8100 Media Servers...
UPB_0-day.txt
"; $ikey = ordsubstr$key, $i, 1; // print $i."ikey:".$ikey.""; $itext = ordsubstr$text, $i, 1; // p...
Update Protection against MS-Word Zero-Day Attack (919637)
A zero-day attack has been reported using a code execution vulnerability in Microsoft Word. In order for this attack to be triggered, a user must open a malicious Word document attached to an e-mail or otherwise provided to them by an attacker. Opening the Word file causes the system to be...
GLSA-200512-01 : Perl: Format string errors can lead to code execution
The remote host is affected by the vulnerability described in GLSA-200512-01 Perl: Format string errors can lead to code execution Jack Louis discovered a new way to exploit format string errors in Perl that could lead to the execution of arbitrary code. This is perfomed by causing an integer wra...
Infoseek / Verity Ultraseek < 5.3.3 XSS Vulnerability
Infoseek / Verity Ultraseek formerly Inktomi Search is vulnerable to cross-site scripting XSS and remote script injection due to a lack of sanitization of user-supplied data. SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are...
CVE-2005-2687
PHP remote file inclusion vulnerability in SaveWebPortal 3.4 allows remote attackers to execute arbitrary PHP code via the 1 SITEPath parameter to menudx.php or 2 CONTENTSDir parameter to menusx.php...
Mozilla Suite/Firefox < 1.0.5 - compareTo Code Execution (Metasploit)
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3...
PHP Advanced Transfer Manager 1.21 - Arbitrary File Inclusion
source: https://www.securityfocus.com/bid/13691/info PHP Advanced Transfer Manager is prone to an arbitrary file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary server-side...