Command injection

The fabric-interconnect component in Cisco Unified Computing System UCS allows local users to gain privileges and read arbitrary files via crafted command parameters within the command-line interface, aka Bug ID CSCtr43374...

Command injection

Palo Alto Networks PAN-OS before 3.1.11 and 4.0.x before 4.0.9 allows remote authenticated users to cause a denial of service management-server crash by using the command-line interface for a crafted command, aka Ref ID 35254...

CVE-2012-6597

Palo Alto Networks PAN-OS before 3.1.11 and 4.0.x before 4.0.9 allows remote authenticated users to cause a denial of service management-server crash by using the command-line interface for a crafted command, aka Ref ID 35254...

CVE-2013-3384

The web framework in IronPort AsyncOS on Cisco Web Security Appliance devices before 7.1.3-013, 7.5 before 7.5.0-838, and 7.7 before 7.7.0-550; Email Security Appliance devices before 7.1.5-104, 7.3 before 7.3.2-026, 7.5 before 7.5.2-203, and 7.6 before 7.6.3-019; and Content Security Management...

CVE-2013-0715

The WebCLI component in Wind River VxWorks 5.5 through 6.9 allows remote authenticated users to cause a denial of service CLI session crash via a crafted command string...

Command injection

The WebCLI component in Wind River VxWorks 5.5 through 6.9 allows remote authenticated users to cause a denial of service CLI session crash via a crafted command string...

CVE-2012-4833

fuser in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly restrict the -k option, which allows local users to kill arbitrary processes via a crafted command line...

DEBIAN-CVE-2012-0920

Use-after-free vulnerability in Dropbear SSH Server 0.52 through 2012.54, when command restriction and public key authentication are enabled, allows remote authenticated users to execute arbitrary code and bypass command restrictions via multiple crafted command requests, related to "channels...

CVE-2012-0920

Use-after-free vulnerability in Dropbear SSH Server 0.52 through 2012.54, when command restriction and public key authentication are enabled, allows remote authenticated users to execute arbitrary code and bypass command restrictions via multiple crafted command requests, related to "channels...

foomatic: Improper sanitization of command line option in foomatic-rip (foomatic.c)

foomaticrip.c in foomatic-rip in foomatic-filters in Foomatic 4.0.6 allows remote attackers to execute arbitrary code via a crafted FoomaticRIPCommandLine field in a .ppd file, a different vulnerability than CVE-2011-2697...

CVE-2011-2964

foomaticrip.c in foomatic-rip in foomatic-filters in Foomatic 4.0.6 allows remote attackers to execute arbitrary code via a crafted FoomaticRIPCommandLine field in a .ppd file, a different vulnerability than CVE-2011-2697...

CVE-2011-2489

Multiple off-by-one errors in opiesu.c in opiesu in OPIE 2.4.1-test1 and earlier might allow local users to gain privileges via a crafted command line...

CVE-2011-2489

Multiple off-by-one errors in opiesu.c in opiesu in OPIE 2.4.1-test1 and earlier might allow local users to gain privileges via a crafted command line...

pWhois Layer Four Traceroute (LFT) Unspecified Vulnerability

This host is installed with Whois Layer Four Traceroute LFT and is prone to unspecified vulnerability. OpenVAS Vulnerability Test $Id: gbpwhoislftunspecifiedvuln.nasl 7823 2017-11-20 08:54:04Z cfischer $ pWhois Layer Four Traceroute LFT Unspecified Vulnerability Authors: Antu Sanadi Copyright c...

pWhois Layer Four Traceroute (LFT) Unspecified Vulnerability

Whois Layer Four Traceroute LFT is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

UBUNTU-CVE-2011-0765

Unspecified vulnerability in lft in pWhois Layer Four Traceroute LFT 3.x before 3.3 allows local users to gain privileges via a crafted command line...

Command injection

The client in HP Data Protector does not properly validate EXECCMD arguments, which allows remote attackers to execute arbitrary Perl code via a crafted command, related to the "local bin directory."...

CVE-2010-4695

Removed by vendor...

PT-2010-5205

Name of the Vulnerable Software and Affected Versions Microsoft FTP Service versions 7.0 through 7.5 for Internet Information Services IIS 7.0 and 7.5 Description The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted FTP command. This is due to a...

RealVNC VNC Server ClientCutText Message Memory Corruption

A memory corruption vulnerability has been reported in RealVNC VNC Server. The vulnerability is due to insufficient boundary checks by RealVNC when handling certain messages sent from RealVNC clients. A remote attackerscould exploit this issue by sending a crafted VNC command ot a target server...