830 matches found
Apache HTTP Server 'mod_include' Privilege Escalation Vulnerability
The remote web server appears to be running a version of Apache HTTP Server that is older than version 1.3.33. SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Sympa < 4.1.3 Privilege Escalation Vulnerability
The remote version of Sympa contains a vulnerability which can be exploited by malicious local user to gain escalated privileges. SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
GLSA-200510-03 : Uim: Privilege escalation vulnerability
The remote host is affected by the vulnerability described in GLSA-200510-03 Uim: Privilege escalation vulnerability Masanari Yamamoto discovered that Uim uses environment variables incorrectly. This bug causes a privilege escalation if setuid/setgid applications are linked to libuim. This bug on...
FreeBSD : mozilla -- code execution via javascript: IconURL vulnerability (eca6195a-c233-11d9-804c-02061b08fc24)
A Mozilla Foundation Security Advisory reports : Two vulnerabilities have been discovered in Firefox, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a user's system. - The problem is that 'IFRAME' JavaScript URLs are not properly protected from...
GLSA-200505-14 : Cheetah: Untrusted module search path
The remote host is affected by the vulnerability described in GLSA-200505-14 Cheetah: Untrusted module search path Brian Bird discovered that Cheetah searches for modules in the world-writable /tmp directory. Impact : A malicious local user could place a module containing arbitrary code in /tmp,...
cdrdao -- unspecified privilege escalation vulnerability
The developers of cdrdao report that there is a potential root exploit in the software. In order to be able to succesfully exploit this vulnerability cdrdao must be installed setuid root. When succesfully exploited a local user might get escalated privileges. By default this port is not installed...
mozilla -- code execution via javascript: IconURL vulnerability
A Mozilla Foundation Security Advisory reports: Two vulnerabilities have been discovered in Firefox, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a user's system. The problem is that "IFRAME" JavaScript URLs are not properly protected from bein...
CVE-2005-0970
Mac OS X 10.3.9 and earlier allows users to install, create, and execute setuid/setgid scripts, contrary to the intended design, which may allow attackers to conduct unauthorized activities with escalated privileges via vulnerable scripts...
Affix Bluetooth Protocol Stack 3.13.2 - Signed Buffer Index (2)
Affix Bluetooth Protocol Stack 3.13.2 - Signed Buffer Index 2 // source: https://www.securityfocus.com/bid/13347/info A local signed buffer index vulnerability affects Affix Bluetooth Protocol Stack. This issue is due to a failure of the affected utility to properly handle user-supplied buffer si...
Important: Red Hat Security Advisory: kon2 security update
A buffer overflow in kon2 allows local users to obtain root privileges. KON is a Kanji emulator for the console. There is a buffer overflow vulnerability in the command line parsing code portion of the kon program up to and including version 0.3.9b. This vulnerability, if appropriately exploited,...