DEBIAN-CVE-2008-5688

MediaWiki 1.8.1, and other versions before 1.13.3, when the wgShowExceptionDetails variable is enabled, sometimes provides the full installation path in a debugging message, which might allow remote attackers to obtain sensitive information via unspecified requests that trigger an uncaught...

PHPfan 3.3.4 - init.php Remote File Inclusion

PHPfan 3.3.4 - init.php Remote File Inclusion remote file include script: phpfan 3.3.4 download from:http://ishallnotcare.org/mint/pepper/tillkruess/downloads/tracker.php?url=http%3A//scriptsextra.ishallnotcare.org/phpfanbasic334.zip...

CVE-2008-4995

redirect.pl in bk2site 1.1.9 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/redirect.log temporary file. NOTE: this vulnerability is only limited to debug mode, which is disabled by default...

CVE-2008-4995

The CVE-2008-4995 entry concerns bk2site 1.1.9, where a symlink attack against the temporary file /tmp/redirect.log in redirect.pl permits local users to overwrite arbitrary files. The underlying issue is a symlink-based write risk present when the program operates in debug mode (which is disable...

Code injection

ogle 0.9.2 and ogle-mmx 0.9.2 allow local users to overwrite arbitrary files via a symlink attack on a /tmp/ogleaudio., b /tmp/oglecli., c /tmp/oglectrl., d /tmp/oglegui., e /tmp/oglempegps., f /tmp/oglempegvs., g /tmp/oglenav., and h /tmp/oglevout., temporary files, related to the 1...

CVE-2008-4955

freevo.real in freevo 1.8.1 allows local users to overwrite arbitrary files via a symlink attack on 1 /tmp/-.pid, 2 /tmp/freevo-gdb, 3 /tmp/freevo-gdb.sh, and 4 /tmp/.stats temporary files. NOTE: this issue is only a vulnerability when a verbose debug mode is activated by modifying source code...

Design/Logic Flaw

freevo.real in freevo 1.8.1 allows local users to overwrite arbitrary files via a symlink attack on 1 /tmp/-.pid, 2 /tmp/freevo-gdb, 3 /tmp/freevo-gdb.sh, and 4 /tmp/.stats temporary files. NOTE: this issue is only a vulnerability when a verbose debug mode is activated by modifying source code...

CVE-2008-4955

freevo.real in freevo 1.8.1 allows local users to overwrite arbitrary files via a symlink attack on 1 /tmp/-.pid, 2 /tmp/freevo-gdb, 3 /tmp/freevo-gdb.sh, and 4 /tmp/.stats temporary files. NOTE: this issue is only a vulnerability when a verbose debug mode is activated by modifying source code...

Simple Machines Forum (SMF) 1.1.6 - Local File Inclusion / Code Execution

!/usr/bin/perl @title: Simple Machines Forum Code Execution @versn: perl P:\advisories\smf\smflocalfileinclude.pl -s http://localhost/audit/smf116 -u regular -p test -d ii 0day Simple Machines Forum new cookiejar = , agent = "Mozilla FireFox" ; my %parms = s = "", d = 0, x = sub print " Proxy...

CVE-2008-4800

The CVE-2008-4800 entry concerns the DebugDiag ActiveX control in CrashHangExt.dll (Microsoft Debug Diagnostic Tool, version possibly 1.0). The vulnerability occurs when a large negative integer is provided to GetEntryPointForThread, which can trigger a NULL pointer dereference and cause a denial...

[RISE-2008001] Sun Solstice AdminSuite sadmind adm_build_path() Buffer Overflow Vulnerability

RISE-2008001 Sun Solstice AdminSuite sadmind admbuildpath Buffer Overflow Vulnerability http://risesecurity.org/advisories/RISE-2008001.txt Published: October 14, 2008 Updated: October 14, 2008 INTRODUCTION There exists a vulnerability within a function of the Sun Solstice AdminSuite sadmind, whi...

Fedora 9 : rkhunter-1.3.2-5.fc9 (2008-8314)

Wed Sep 3 2008 Kevin Fenzi - 1.3.2-5 - Patch debug tmp file issue - bug 460628 - Mon Jun 16 2008 Kevin Fenzi - 1.3.2-4 - Fix cron script to only mail on warn/error - bug 450703 - Fix conditional to account for fc10 rsyslog - Mon Apr 28 2008 Kevin Fenzi - 1.3.2-3 - Change cron to run after prelink...

Fedora 8 : rkhunter-1.3.2-5.fc8 (2008-8364)

Wed Sep 3 2008 Kevin Fenzi - 1.3.2-5 - Patch debug tmp file issue - bug 460628 - Mon Jun 16 2008 Kevin Fenzi - 1.3.2-4 - Fix cron script to only mail on warn/error - bug 450703 - Fix conditional to account for fc10 rsyslog Note that Tenable Network Security has extracted the preceding description...

Generic x86 Debug Trap

Generate a debug trap in the target process This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 1 include Msf::Payload::Single def initializeinfo = supermergeinfoinfo, 'Name' = 'Generi...

BIOS Info (SSH)

Using SMBIOS and UEFI, it was possible to get BIOS info. TRUSTED...

libtiff security update

3.5.7-31.el3 - Fix some additional LZW decoding vulnerabilities back-port from tiff-3.6.1 Resolves: 458810 - Force debug symbols to be generated by adding GCOPTS=-g; the test used by this old configure script is too easily confused 3.5.7-25.el3.5 - Fix LZW decoding vulnerabilities CVE-2008-2327...

ASP.NET DEBUG Method Enabled

It is possible to send debug statements to the remote ASP scripts. An attacker might use this to alter the runtime of the remote scripts. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid33270; scriptversion"1.18";...

Debian DSA-1597-2 : mt-daapd - multiple vulnerabilities

Three vulnerabilities have been discovered in the mt-daapd DAAP audio server also known as the Firefly Media Server. The Common Vulnerabilities and Exposures project identifies the following three problems : - CVE-2007-5824 Insufficient validation and bounds checking of the Authorization: HTTP...

Authentication flaw

The scheduler in CUPS in Apple Mac OS X 10.5 before 10.5.3, when debug logging is enabled and a printer requires a password, allows attackers to obtain sensitive information credentials by reading the log data, related to "authentication environment variables."...

CVE-2008-1033

The scheduler in CUPS in Apple Mac OS X 10.5 before 10.5.3, when debug logging is enabled and a printer requires a password, allows attackers to obtain sensitive information credentials by reading the log data, related to "authentication environment variables."...