S-plus /tmp usage

INTRODUCTION S-PLUS is a Statistical analysis, graphics and programming tool http://www.statsci.com/ http://www.insightful.com/ PROBLEM As installed on UNIX machines, Splus uses files in /tmp in an unsafe way. DETAILS The main Sqpe binary, and various shell script modules, use files in /tmp:...

CVE-2002-1874

astrocam.cgi in AstroCam 0.9-1-1 through 1.4.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTP request. NOTE: earlier disclosures stated that the affected versions were 1.7.1 through 2.1.2, but the vendor explicitly stated that these were incorrect...

Cobalt RaQ4 Administrative Interface overflow.cgi Command Execution

/cgi-bin/.cobalt/overflow/overflow.cgi was detected. Some versions of this CGI allow remote users to execute arbitrary commands with the privileges of the web server. Nessus just checked the presence of this file but did not try to exploit the flaw, so this might be a false positive. %NASLMINLEVE...

Tetex command execution

Uncommented shell characters during system call in kpathsea library...

SCAN Associates Advisory: madhater perlbot 1.0 beta - Remote Command Execution

perlbot 1.0 beta - Remote Command Execution Discovered By guejez of scan-associates.net About perlbot: ------------------ quote from perlbot website "" /quote from perlbot website perlbot is avaliable at http://stigmata.gothcafe.com/madhater Vulnerable tested Versions: -------------------- Perlbo...

CVE-2002-0904

SayText function in Kismet 2.2.1 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters backtick or pipe in the essid argument...

Achievo 0.70.80.9 - Remote File Inclusion Command Execution

Achievo 0.70.80.9 - Remote File Inclusion Command Execution source: https://www.securityfocus.com/bid/5552/info Achievo includes a PHP script which is used to generate JavaScript class.atkdateattribute.js.php. This script employs a number of PHP includeonce statements to call code contained in...

Directory Manager edit_image.php Arbitrary Command Execution

Directory Manager is installed and does not properly filter user input. A remote attacker may use this flaw to execute arbitrary commands. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid11104; scriptversion"1.26";...

SCPOnly 2.3/2.4 - SSH Environment Shell Escaping

source: https://www.securityfocus.com/bid/5526/info scponly is a freely available, open source restricted secure copy client. It is available for Unix and Linux operating systems. The default installation of scponly does not place sufficient access controls on the .ssh subdirectory. Due to this...

CVE-2002-0437

Smsd in SMS Server Tools SMStools before 1.4.8 allows remote attackers to execute arbitrary commands via shell metacharacters backquotes in message text, as described with the term "string format vulnerability" by some sources...

Important: Red Hat Security Advisory: php security update

PHP versions earlier than 4.1.0 contain a vulnerability that could allow arbitrary commands to be executed. updated 22 Aug 2002 The initial set of errata packages contained an incorrect set of dependencies. This meant that a number of packages would need to be installed before php that were not...

ZeroBoard 4.1 - PHP Include File Arbitrary Command Execution

source: https://www.securityfocus.com/bid/5028/info Zeroboard is a PHP web board package available for the Linux and Unix platforms. Under some circumstances, it may be possible to include arbitrary PHP files. The head.php file does not sufficiently check or sanitize input. When the "allowurlfope...

Important: Red Hat Security Advisory: : Ghostscript command execution vulnerability

Updated packages are available for GNU Ghostscript which fix a vulnerability found during Postscript interpretation. Ghostscript is a program for displaying PostScript files or printing them to non-PostScript printers. An untrusted PostScript file can cause ghostscript to execute arbitrary comman...

CVE-2002-0277

Add2it Mailman Free 1.73 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the list parameter...

Apache on Windows < 1.3.24 / 2.0.x < 2.0.34 DOS Batch File Arbitrary Command Execution

Apache for Win32 prior to 1.3.24 and 2.0.x prior to 2.0.34-beta is shipped with a default script, '/cgi-bin/test-cgi.bat', that allows an attacker to remotely execute arbitrary commands on the host subject to the permissions of the affected application. An attacker can send a pipe character '|'...

csSearch csSearch.cgi setup Parameter Arbitrary Command Execution

The version of csSearch running on the remote host has a command execution vulnerability. Input to the 'print' parameter of 'csSearch.cgi' is not properly sanitized. A remote attacker could exploit this by executing arbitrary system commands with the privileges of the web server. %NASLMINLEVEL...

CVE-1999-1437

ePerl 2.2.12 allows remote attackers to read arbitrary files and possibly execute certain commands by specifying a full pathname of the target file as an argument to bar.phtml...

CVE-2001-0944

DDE in mIRC allows local users to launch applications under another user's account via a DDE message that executes a command, which may be executed by the other user's process...

DistCC Daemon Command Execution

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

CVE-1999-1179

Vulnerability in man.sh CGI script, included in May 1998 issue of SysAdmin Magazine, allows remote attackers to execute arbitrary commands...