ALFTP Insecure Executable File Loading Vulnerability

ALFTP is prone to insecure executable file loading vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2012-1440

The ELF file parser in Norman Antivirus 6.06.12, eSafe 7.0.17.0, CA eTrust Vet Antivirus 36.1.8511, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified identsize field. NOTE: this may later be SPLIT into...

CVE-2012-1447

The ELF file parser in Fortinet Antivirus 4.2.254.0, eSafe 7.0.17.0, Dr.Web 5.0.2.03300, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified eversion field. NOTE: this may later be SPLIT into multiple CVEs if additional information is...

Irongeek's Shared hosting MD5 Change Detection Script

Irongeek's Shared hosting MD5 Change Detection Script Adrian Crenshaw aka Irongeek just release another great tool for web admins that will monitor the files on a website, and report any changed via email. Actually "irongeek.com" was hacked few days back which is hosted on a shared hosting. There...

CVE-2012-0315

Untrusted search path vulnerability in ALFTP before 5.31 allows local users to gain privileges via a Trojan horse executable file in a directory that is accessed for reading an extensionless file, as demonstrated by executing the README.exe file when a user attempts to access the README file...

CVE-2012-0315

CVE-2012-0315 (ALFTP) – Affected software and cause : ESTsoft ALFtp prior to 5.31 is vulnerable to an untrusted search path issue that lets local users gain privileges by loading a Trojan horse executable (e.g., README.exe) when a user opens an extensionless file like README in the same directory...

CVE-2012-0315

Untrusted search path vulnerability in ALFTP before 5.31 allows local users to gain privileges via a Trojan horse executable file in a directory that is accessed for reading an extensionless file, as demonstrated by executing the README.exe file when a user attempts to access the README file...

Threat Outbreak Alert: Fake UPS Payment Document Attachment Email Messages on January 21, 2014

Low Alert ID: 25171 First Published: 2012 February 13 15:22 GMT Last Updated: 2014 January 22 15:06 GMT Version: 53 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a payment document from the United Parcel Service UPS for the recipient...

CVE-2011-5069

Unrestricted file upload vulnerability in incidentattachments.php in Support Incident Tracker aka SiT! 3.65 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in unspecified directory, a...

Design/Logic Flaw

Untrusted search path vulnerability in the Windows Object Packager configuration in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a Trojan horse executable file in the current working directory, as demonstrated by a directory that contains a file...

CVE-2011-4266

CVE-2011-4266 affects FFFTP prior to version 1.98d, via an untrusted search path that lets local users gain privileges using a Trojan horse executable in the same directory read to load an extensionless file (demonstrated with README.exe). The vulnerability is rooted in unsafe loading of executab...

CVE-2011-4266

Untrusted search path vulnerability in FFFTP before 1.98d allows local users to gain privileges via a Trojan horse executable file in a directory that is accessed for reading an extensionless file, as demonstrated by executing the README.exe file when a user attempts to access the README file, a...

eEye Retina audit script could execute untrusted programs as root

Overview eEye Retina audit scripts have the capability to run remote shell scripts in order to determine vulnerable applications. One audit script in particular audit ID 2499 uses find1 and execute -exec when assessing a vulnerability within Gauntlet Firewall. An attacker who can write an...

CVE-2011-0185

Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS X before 10.7.2 allows local users to gain privileges via a crafted name of an executable file...

Format string

Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS X before 10.7.2 allows local users to gain privileges via a crafted name of an executable file...

VulnCheck KEV: CVE-2007-4105

A certain ActiveX control in BaiduBar.dll in Baidu Soba Search Bar 5.4 allows remote attackers to execute arbitrary code via a request containing "a link to download and a file to execute," possibly involving remote file inclusion...

XnView File Search Path Executable File Injection Vulnerability - Windows

XnView is prone to an executable file injection vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

XnView File Search Path Executable File Injection Vulnerability (Windows)

This host has XnView installed and is prone to executable file injection vulnerability. Vulnerabilities Insight: The flaw is caused by an untrusted search path vulnerability when loading executables. OpenVAS Vulnerabilities Test $Id: gbxnviewcodeexecvulnwin.nasl 7052 2017-09-04 11:50:51Z teissa $...

Code injection

The Cisco VPN Client 5.0.7.0240 and 5.0.7.0290 on 64-bit Windows platforms uses weak permissions NT AUTHORITY\INTERACTIVE:F for cvpnd.exe, which allows local users to gain privileges by replacing this executable file with an arbitrary program, aka Bug ID CSCtn50645. NOTE: this vulnerability exist...

Design/Logic Flaw

The helper application in Cisco AnyConnect Secure Mobility Client formerly AnyConnect VPN Client before 2.5.3041, and 3.0.x before 3.0.629, on Linux and Mac OS X downloads a client executable file vpndownloader.exe without verifying its authenticity, which allows remote attackers to execute...