IBM eGatherer/IBM acpRunner ActiveX multiple bugs

Unsafe methods allows disk access and scripting...

CVE-2004-0417

CVS-2004-0417 involves an Integer overflow in the Max-dotdot command (serve_max_dotdot) affecting CVS 1.12.x (up to 1.12.8) and 1.11.x (up to 1.11.16). The issue can let remote attackers crash the CVS server, potentially leaving undeleted data and consuming disk space (DoS). Publicly available fi...

security flaw

Integer overflow in the "Max-dotdot" CVS protocol command servemaxdotdot for CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to cause a server crash, which could cause temporary data to remain undeleted and consume disk space...

CVE-2004-0435

CVE-2004-0435 concerns a vulnerability in FreeBSD where programming errors in the msync(2) implementation, specifically involving the MS_INVALIDATE operation, allow a local user to prevent changes to a file from being written to disk due to cache consistency issues. Affected products include Free...

CVE-2004-0407

The HTML form upload capability in ColdFusion MX 6.1 does not reclaim disk space if an upload is interrupted, which allows remote attackers to cause a denial of service disk consumption by repeatedly uploading files and interrupting the uploads before they finish...

CVE-2004-0485

CVE-2004-0485 concerns the default protocol helper for the disk: URI on Mac OS X 10.3.3 and 10.2.8. The underlying issue allows a remote attacker to cause a disk image file (.dmg) to be mounted as a disk volume, enabling writing of arbitrary files. The description in the connected records confirm...

Apple Mac OS X "disk://" URI handler stores arbitrary files in a known location

Overview A vulnerability has been reported in the default "disk://" protocol handler installed on Apple Mac OS X systems. Remote attackers may potentially use this vulnerability to create files on the local system without explicit user consent. We have not independently verified the scope of this...

CVE-2004-1981

The web interface for Crystal Reports allows remote attackers to cause a denial of service disk exhaustion by repeatedly requesting reports without retrieving the associated image files, which are not cleared from the image file folder...

Citrix Metaframe client disk access

Server administrator can access client drives...

CVE-2004-0407

The HTML form upload capability in ColdFusion MX 6.1 does not reclaim disk space if an upload is interrupted, which allows remote attackers to cause a denial of service disk consumption by repeatedly uploading files and interrupting the uploads before they finish...

CVE-2004-0407

The CVE concerns ColdFusion MX 6.1: HTML form upload does not reclaim disk space when uploads are interrupted, enabling a remote attacker to perform a denial of service via repeated interrupted uploads. Affected component is the upload handling; root cause is improper disk space reclamation after...

How to crash a harddisk - the Ipswitch WS_FTP Server way

Advisory Name: How to crash a harddisk - the Ipswitch WSFTP Server way Impact : Denial of Service Discovered by: Hugh Mann [email protected] Tested progs : Ipswitch WSFTP Server 4.0.2.EVAL Description It's possible for any user with write access to a directory, even when there's a limit to how...

DEBIAN-CVE-2004-1834

moddiskcache in Apache 2.0 through 2.0.49 stores client headers, including authentication information, on the hard disk, which could allow local users to gain sensitive information...

CVE-2003-1524

PGPi PGPDisk 6.0.2i does not unmount a PGP partition when the switch user function in Windows XP is used, which could allow local users to access data on another user's PGP partition...

CVE-2003-1462

modsurvey 3.0.0 through 3.0.15-pre6 does not check whether a survey exists before creating a subdirectory for it, which allows remote attackers to cause a denial of service disk consumption and possible crash...

[Opera 7] Arbitrary File Auto-Saved Vulnerability.

--------------------------------------------------------------------------------- TITLE : Opera 7 Arbitrary File Auto-Saved Vulnerability. -= For Whom The Remote Customizing Runs? =- PRODUCT : Opera 7 for Windows VERSIONS : 7.22 build 3221 JP:build 3222 7.21 build 3218 JP:build 3219 7.20 build 31...

Opera 7.22 - File Creation and Execution (WebServer)

Opera 7.22 - File Creation and Execution WebServer !/usr/bin/perl Sample code of "Opera 7 Arbitrary File Auto-Saved Vulnerability." This Exploit will run a webserver that will create and execute a batch file on the victim's computer when visiting this malicious server This perl script is a small...

Opera 7.22 File Creation and Execution Exploit (Malicious Webserver)

Exploit for unknown platform in category remote exploits ==================================================================== Opera 7.22 File Creation and Execution Exploit Malicious Webserver ==================================================================== !/usr/bin/perl Sample code of "Oper...

Pablo FTP Service multiple bugs

Anonymous user has full disk access by default. Passwords are stred in cleartext...

ST FTP directory traversal

It's possible to perform cd to any disk...