1612 matches found
[Full-disclosure] Jetbox CMS version 2.1 Multiple SQL Injection Vulnerabilities
netVigilance Security Advisory 28 Jetbox CMS version 2.1 Multiple SQL Injection Vulnerabilities Description: Jetbox CMS is seriously tested on usability & has a professional intuitive interface. The system is role based, with workflow and module orientated. All content is fully separated from...
Sun Microsystems Solaris SRSEXEC 3.2.x - Arbitrary File Read Local Information Disclosure
Sun Microsystems Solaris SRSEXEC 3.2.x - Arbitrary File Read Local Information Disclosure source: https://www.securityfocus.com/bid/23915/info Sun Microsystems Solaris is prone to a local information-disclosure vulnerability due to a design error. A local attacker may exploit this issue to access...
Sun Microsystems Solaris SRSEXEC 3.2.x - Arbitrary File Read Local Information Disclosure
source: https://www.securityfocus.com/bid/23915/info Sun Microsystems Solaris is prone to a local information-disclosure vulnerability due to a design error. A local attacker may exploit this issue to access sensitive information, including superuser password information, that may lead to further...
[Full-disclosure] Advanced Guestbook version 2.4.2 Directory Traversal Vulnerability
netVigilance Security Advisory 13 Advanced Guestbook version 2.4.2 Directory Traversal Vulnerability Description: Advanced Guestbook is a PHP-based guestbook script. It includes many useful features such as preview, templates, e-mail notification, picture upload, page spanning , html tags handlin...
ManageEngine Password Manager Pro Build 5401 - Database Remote Unauthorized Access
ManageEngine Password Manager Pro Build 5401 - Database Remote Unauthorized Access source: https://www.securityfocus.com/bid/23693/info ManageEngine Password Manager Pro is prone to a remote unauthorized-access vulnerability due to a design error. An attacker may leverage this issue to gain...
Multiple Printer Providers (Spooler Service) - Local Privilege Escalation
/Private exploit- internal use only Title: Universal exploit for vulnerable printer providers spooler service. Vulnerability: Insecure EnumPrintersW calls Author: Andres Tarasco Acuña - [email protected] Website: http://www.514.es This code should allow to gain SYSTEM privileges with the following...
Oracle January 2007 Security Update - Multiple Vulnerabilities
Oracle January 2007 Security Update - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/22083/info Oracle has released a Critical Patch Update advisory for January 2007 to address these vulnerabilities for supported releases. Earlier unsupported releases are likely to be affected...
Oracle January 2007 Security Update - Multiple Vulnerabilities
source: https://www.securityfocus.com/bid/22083/info Oracle has released a Critical Patch Update advisory for January 2007 to address these vulnerabilities for supported releases. Earlier unsupported releases are likely to be affected by these issues as well. The issues identified by the vendor...
Outpost Firewall PRO 4.0 - Local Privilege Escalation
Outpost Firewall PRO 4.0 - Local Privilege Escalation source: https://www.securityfocus.com/bid/22069/info Outpost Firewall PRO is prone to a local privilege-escalation vulnerability because it fails to perform adequate SSDT System Service Descriptor Table hooking on files in its installation...
Outpost Firewall PRO 4.0 - Local Privilege Escalation
source: https://www.securityfocus.com/bid/22069/info Outpost Firewall PRO is prone to a local privilege-escalation vulnerability because it fails to perform adequate SSDT System Service Descriptor Table hooking on files in its installation directory. A local attacker can exploit this issue to...
Kerio Personal Firewall 4.3 - IPHLPAPI.dll Local Privilege Escalation
Kerio Personal Firewall 4.3 - IPHLPAPI.dll Local Privilege Escalation source: https://www.securityfocus.com/bid/21828/info Kerio Personal Firewall is prone to a local privilege-escalation vulnerability. A local attacker could exploit this issue to execute arbitrary machine code with SYSTEM-level...
Grsecurity Kernel PaX - Local Privilege Escalation
Grsecurity Kernel PaX - Local Privilege Escalation / source: https://www.securityfocus.com/bid/22014/info Grsecurity Kernel PaX is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to obtain superuser privileges. A successful attack can result in the complete...
Microsoft Security Bulletin MS06-077 Vulnerability in Remote Installation Service Could Allow Remote Code Execution (926121)
Microsoft Security Bulletin MS06-077 Vulnerability in Remote Installation Service Could Allow Remote Code Execution 926121 Published: December 12, 2006 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Windows Impact of Vulnerability: Remote Code Execution Maximum...
CVE-2006-6220
Multiple SQL injection vulnerabilities in Recipes Website Recipes Complete Website 1.1.14 allow remote attackers to execute arbitrary SQL commands via the 1 recipeid parameter to recipe.php or the 2 categoryid parameter to list.php...
Recipes Complete Website 1.1.14 - SQL Injection
Coding 4 Fun Recipes Complete Website 1.1.14 http://www.easysitenetwork.com/modules.php?name=Content&pa=showpage&pid=2 ; Class = SQL Injection ; Download = http://www.easysitenetwork.com/modules.php?name=Downloads&dop=getit&lid=3 ; Found by = GregStar gregstaratc4fdotpl http://c4f.pl ;...
Recipes Complete Website 1.1.14 Remote SQL Injection Vulnerabilities
Exploit for unknown platform in category web applications ==================================================================== Recipes Complete Website 1.1.14 Remote SQL Injection Vulnerabilities ==================================================================== Coding 4 Fun Recipes Complete...
Computer Associates Personal Firewall 9.0 - HIPS Driver kmxfw.sys Local Privilege Escalation
Computer Associates Personal Firewall 9.0 - HIPS Driver kmxfw.sys Local Privilege Escalation // source: https://www.securityfocus.com/bid/21140/info Multiple Computer Associates security-related products are prone to multiple local privilege-escalation vulnerabilities. An attacker can leverage...
HP Tru64 4.0/5.1 - POSIX Threads Library Privilege Escalation
source: https://www.securityfocus.com/bid/21035/info HP Tru64 is prone to a local privilege-escalation vulnerability. Exploiting this issue allows local attackers to execute arbitrary code with superuser privileges. Successful exploits will result in a complete compromise of vulnerable computers...
Microsoft Windows Server Service RPC Request Buffer Overrun (MS06-040; CVE-2006-3439)
The Server Service SRVSVC is one of the network services supplied by Microsoft. It supports file, print, and named-pipe sharing over Windows-based networks, and allows named pipe communication between applications running on distributed systems. By supplying malformed parameters to some of the AP...
Microsoft DNS Client buffer overflow
Overview The Microsoft DNS Client service contains a remote code execution vulnerability that could allow a remote attacker to take complete control of the affected system. Description From Microsoft TechNet: The Domain Name System DNS client service resolves and caches DNS names. The DNS client...