Invision Power Board 2.1.7 - 'Debug' Remote Password Change

INSERT INTO \w?regantispam \regid,regcode,ipaddress,ctime\ VALUES\'\w32?',\d?,/', $page, $regs $prefix = $regs1; $regid = $regs2; $regcode = $regs3; else $suffix = "&debug=1"; $curl = curlinit$site.'act=Reg&CODE=10'.$suffix; curlsetopt$curl, CURLOPTPROXY, $proxy; curlsetopt$curl,...

Invision Power Board 2.1.7 - Debug Remote Password Change

Invision Power Board 2.1.7 - Debug Remote Password Change INSERT INTO \w?regantispam \regid,regcode,ipaddress,ctime\ VALUES\'\w32?',\d?,/', $page, $regs $prefix = $regs1; $regid = $regs2; $regcode = $regs3; else $suffix = "&debug=1"; $curl = curlinit$site.'act=Reg&CODE=10'.$suffix;...

DokuWiki 2006-03-09b - 'dwpage.php' Remote Code Execution

!/usr/bin/php -q -d shortopentag=on ? printr' -------------------------------------------------------------------------------- DokuWiki = 2006-03-09b release /bin/dwpage.php remote commands execution xploit by rgod [email protected] site: http://retrogod.altervista.org dork: "Driven by DokuWiki"...

Sendmail DEBUG Mode Leak Vulnerability

According to the version number of the remote mail server, a local user may be able to obtain the complete mail configuration and other interesting information about the mail queue. SPDX-FileCopyrightText: 2002 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and...

ColdFusion Debug Mode

It is possible to see the ColdFusion Debug Information by appending ?Mode=debug at the end of the request like GET /index.cfm?Mode=debug. 4.5 and 5.0 are definitely concerned probably in addition older versions. The Debug Information usually contain sensitive data such as Template Path or Server...

[Full-disclosure] CAID 33485 - Computer Associates iGateway debug mode HTTP GET request buffer overflow vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Title: Computer Associates iGateway debug mode HTTP GET request buffer overflow vulnerability CA Vulnerability ID: 33485 Discovery Date: 2005-10-06 CA Advisory Date: 2005-10-14 Discovered By: EMendoza Impact: Remote attacker can execute arbitrary code...

Computer Associates iGateway buffer overflow

Buffer overflow on HTTP request parsing if debug mode is enabled...

[SA17085] CA iGateway Debug Mode HTTP GET Request Buffer Overflow

TITLE: CA iGateway Debug Mode HTTP GET Request Buffer Overflow SECUNIA ADVISORY ID: SA17085 VERIFY ADVISORY: http://secunia.com/advisories/17085/ CRITICAL: Moderately critical IMPACT: System access WHERE: From remote SOFTWARE: CA iGateway 4.x http://secunia.com/product/5821/ CA iGateway 3.x...

CA iTechnology iGateway - 'Debug Mode' Remote Buffer Overflow

/ca igateway debug remote overflow -egm [email protected]/ /01.30.05/ include include include include const int MAXSIZE = 17110; char sc = //metasploit "\x6a\x50\x59\xd9\xee\xd9\x74\x24\xf4\x5b\x81\x73\x13\x3d\x19\x6d" "\xf7\x83\xeb\xfc\xe2\xf4\xc1\x73\x86\xba\xd5\xe0\x92\x08\xc2\x79"...

CA iTechnology iGateway - Debug Mode Remote Buffer Overflow

CA iTechnology iGateway - Debug Mode Remote Buffer Overflow /ca igateway debug remote overflow -egm [email protected]/ /01.30.05/ include include include include const int MAXSIZE = 17110; char sc = //metasploit "\x6a\x50\x59\xd9\xee\xd9\x74\x24\xf4\x5b\x81\x73\x13\x3d\x19\x6d"...

CA iGateway (debug mode) Remote Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ======================================================= CA iGateway debug mode Remote Buffer Overflow Exploit ======================================================= /ca igateway debug remote overflow -egm email protected/ /01.30.05/ includ...

DEBIAN-CVE-2005-2660

apachetop 0.12.5 and earlier, when running in debug mode, allows local users to create or append to arbitrary files via a symlink attack on atop.debug...

CVE-2005-2660

apachetop 0.12.5 and earlier, when running in debug mode, allows local users to create or append to arbitrary files via a symlink attack on atop.debug...

CVE-2005-2660

apachetop 0.12.5 and earlier, when running in debug mode, allows local users to create or append to arbitrary files via a symlink attack on atop.debug...

CVE-2005-2660

apachetop 0.12.5 and earlier, when running in debug mode, allows local users to create or append to arbitrary files via a symlink attack on atop.debug...

CVE-2005-2660

apachetop 0.12.5 and earlier, when running in debug mode, allows local users to create or append to arbitrary files via a symlink attack on atop.debug...

nbsmtp -- format string vulnerability

When nbsmtp is executed in debug mode, server messages will be printed to stdout and logged via syslog. Syslog is used insecurely and user-supplied format characters are directly fed to the syslog function, which results in a format string vulnerability. Under some circumstances, an SMTP server m...

CVE-2005-0464

grosview in SGI IRIX 6.5.22, and possibly other 6.5 versions, does not drop privileges when opening description files while in debug mode, which allows local users to read a line from arbitrary files via the -d and -D options, which prints the line as a formatting error...

CVE-2001-1462

WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to cause the WebID agent to enter debug mode via a URL containing null characters, which may allow attackers to obtain sensitive information...

CVE-2005-0464

The CVE concerns SGI IRIX gr_osview (6.5.x, including 6.5.22) which does not drop privileges when opening user-specified description files in debug mode. Local attackers can read a line from arbitrary files by using -d and -D, which prints the line as a formatting error. The core issue is an info...