CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1634 matches found

Packet Storm•added 2000/03/02 12:0 a.m.•41 views

unsigned.cab.exploit.txt

Vulnerability details and example exploit for Microsoft Active Setup control's unsigned CAB file execution vulnerability. Introduction Microsoft's Active Setup Control asctrls.ocx shipped with Internet Explorer 4 and above has a vulnerability in it as discovered by Juan Carlos Garcia Cuartango ,...

7.4AI score

Exploits0

Packet Storm•added 1999/11/23 12:0 a.m.•49 views

netbeans.java.txt

Reply-To: Halcyon Skinner Vulnerable Application: Sun Microsystems NetBeans recently renamed to Forte' Java IDE Versions tested: Netbeans Developer 3.0 Beta Forte Community Edition 1.0 Beta unknown if earlier versions have vulnerability Platform tested: Windows NT 4.0 unknown if other platforms...

7.4AI score

Exploits0

Packet Storm•added 1999/11/05 12:0 a.m.•25 views

ex_anhttpd.txt

by Message by Thread Post Reply To: BugTraq Subject: Some holes for Win/UNIX softwares Date: Tue Nov 02 1999 22:39:56 Author: UNYUN Message-ID: ------------------------------------------------------------------------ 3 AN-HTTPd 1.20b Problem: The test CGIs which are distributed with AN-HTTPd 1.20...

7.4AI score

Exploits0

Packet Storm•added 1999/08/17 12:0 a.m.•27 views

coldfusion.alert.txt

Date: Friday, 30 Apr 1999 17:00:00 -0400 From: [email protected] To: [email protected] Subject: ColdFusion Security Alert Allaire respects the Web and the privacy of those who use it. To avoid future messages from Allaire, send e-mail to [email protected] with the subject:...

7.4AI score

Exploits0

Packet Storm•added 1999/08/17 12:0 a.m.•44 views

pine.4.xx.lockfile.txt

Date: Sun, 5 Mar 1999 01:41:25 +0100 From: Michal Zalewski Lockfile vunerability in pine 4.xx Linux The problem is probably well known, but silently ignored by pine vendors. Unfortunately, it's possible to turn 'mostly harmless feature' in something nasty - following code allows various DoSes by...

7.4AI score

Exploits0

exploitpack•added 1999/04/09 12:0 a.m.•15 views

WebCom datakommunikation Guestbook 0.1 - wguest.exe Arbitrary File Access

WebCom datakommunikation Guestbook 0.1 - wguest.exe Arbitrary File Access source: https://www.securityfocus.com/bid/2024/info The freeware guestbook package from freeware.webcom.se provides a web-based guestbook feature, using CGI. Some versions of this guestbook undetermined at the time of writi...

0.4AI score

Exploits0

exploitpack•added 1999/02/19 12:0 a.m.•11 views

Linux Kernel 2.02.12.2 - autofs Denial of Service

Linux Kernel 2.02.12.2 - autofs Denial of Service source: https://www.securityfocus.com/bid/312/info The autofs module provides support for the automount filesystem, as well as the interface between the kernel and the automountd daemon, which is responsible for the actual mounting. Calls such as...

0.3AI score

Exploits0

Exploit DB•added 1999/01/07 12:0 a.m.•30 views

Sun Solaris 7.0 - 'ff.core' Local Privilege Escalation

source: https://www.securityfocus.com/bid/327/info There is a vulnerability in Solaris's ff.core utility which allows normal users to execute the rename command as root. This particular bug when leveraged against a series of other configuration issues in a standard Solaris setup can lead to a roo...

7.4AI score

Exploits0

exploitpack•added 1998/12/01 12:0 a.m.•26 views

Novell Netware Web Server 3.x - files.pl

Novell Netware Web Server 3.x - files.pl source: https://www.securityfocus.com/bid/2076/info Novell Web Server 3.x Examples Toolkit v.2 is a package containing example scripts and HTML files to help administrators design web sites. It is not a support Novell product and is provided solely as a...

7.4AI score

Exploits0

exploitpack•added 1998/05/05 12:0 a.m.•16 views

Fred N. van Kempen dip 3.3.7 - Local Buffer Overflow (1)

Fred N. van Kempen dip 3.3.7 - Local Buffer Overflow 1 // source: https://www.securityfocus.com/bid/86/info A buffer overflow resides in 'dip-3.3.7o' and derived programs. This is a problem only on systems where 'dip' is installed setuid. The culpable code is an 'sprintf' in line 192 in 'main.c':...

0.6AI score

Exploits0

Exploit DB•added 1998/05/05 12:0 a.m.•35 views

Fred N. van Kempen dip 3.3.7 - Local Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/86/info A buffer overflow resides in 'dip-3.3.7o' and derived programs. This is a problem only on systems where 'dip' is installed setuid. The culpable code is an 'sprintf' in line 192 in 'main.c': sprintfbuf, "%s/LCK..%s", PATHLOCKD, nam; / Linux x86...

7.4AI score

Exploits0

exploitpack•added 1997/06/16 12:0 a.m.•25 views

SGI IRIX 6.4 - cgi-bin handler

SGI IRIX 6.4 - cgi-bin handler source: https://www.securityfocus.com/bid/380/info A vulnerability exists in the cgi-bin program 'handler', as included by Silicon Graphics in their Irix operating system. This vulnerability will allow a remote attacker to execute arbitrary commands on the vulnerabl...

Exploits0

Exploit DB•added 1997/05/27 12:0 a.m.•30 views

IRIX 5.3 - '/usr/sbin/iwsh' Local Buffer Overflow / Local Privilege Escalation

/ /usr/sbin/iwsh.c exploit by DCRH 27/5/97 Tested on: R3000 Indigo Irix 5.3 R4400 Indy Irix 5.3 Irix 5.x only compile as: cc iwsh.c / include include include include include define NUMADDRESSES 500 define BUFLENGTH 500 define EXTRA 9000 define OFFSET 0x180 define GPOFFSET -0x80 define IRIXNOP...

7.4AI score

Exploits0