CVE-2009-4140

Unrestricted file upload vulnerability in ofcuploadimage.php in Open Flash Chart v2 Beta 1 through v2 Lug Wyrm Charmer, as used in Piwik 0.2.35 through 0.4.3, Woopra Analytics Plugin before 1.4.3.2, and possibly other products, when registerglobals is enabled, allows remote authenticated users to...

CVE-2009-4373

Unrestricted file upload vulnerability in repository/repositoryattachment.php in AlienVault Open Source Security Information Management OSSIM 2.1.5, and possibly other versions before 2.1.5-4, allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then...

phpshell written to the startup items to mention right-vulnerability warning-the black bar safety net

The actual operation can be in webshell with the udf. dll mention to the right,with the function to upload file function to upload the file to the startup directory,then shut the function re-starting the system. Currently not successful,the opportunity of the local test,the first record on this. ...

Yahoo! Messenger File Transfer Filename Spoofing (CVE-2005-0243)

Yahoo Messenger is a service providing instant messages, similar to MSN Messenger and ICQ. Yahoo! Messenger allows users to see when their friends come online, send instant messages, join chat rooms, and exchange files. There exists a vulnerability in the way Yahoo! Messenger displays file names ...

Serenity/Mplay Player Version Detection

This script detects the installed version of Serenity/Mplay Audio Player. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Altap Salamander 2.5 PE Viewer Buffer Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Altap...

Netcat v1.10 NT Stack Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Netcat v1.10...

COWON Media Center JetAudio Version Detection

This script detects the installed version of COWON Media Center JetAudio. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is fr...

Internet Explorer execCommand File Type Spoofing (CVE-2004-1331)

Internet Explorer is a popular web-browser released by the Microsoft Corporation. It supports various content available on the web including HTML documents, images, dynamic scripting, and so on. Internet Explorer also provides the Dynamic Hypertext Markup Language DHTML application programming...

Oracle Database Server ctxsys.driload Access Validation (CVE-2004-0637)

Stored procedures are a powerful feature of an Oracle database server. They are essentially a set of SQL statements that are stored server-side, which are called by name and optionally passed a set of parameters. Stored procedures provide improved performance, because only data specific to the...

SystemTap Version Detection

This script detects the installed version of SystemTap and sets the result in KB. OpenVAS Vulnerability Test $Id: secpodsystemtapdetect.nasl 7823 2017-11-20 08:54:04Z cfischer $ SystemTap Version Detection Authors: Antu Sanadi Copyright: Copyright c 2009 SecPod, http://www.secpod.com This program...

CVE-2009-3376

Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, does not properly handle a right-to-left override aka RLO or U+202E Unicode character in a download filename, which allows remote attackers to spoof file extensions via a crafted filename, as demonstrated by displayin...

Rising Multiple Products Local Privilege Escalation Vulnerability

ShineShadow Security Report 28102009-13 TITLE Rising Multiple Products Local Privilege Escalation Vulnerability BACKGROUND RISING has introduced a variety of operating system based antivirus software, firewall software and enterprise antivirus wall, firewall, network security warning system and...

Facebook Password-Reset Spam is Botnet Attack

Virus hunters are raising the alarm for a large-scale spam attack that uses fake Facebook password-reset messages to trick PC users into downloading a dangerous piece of malware. The malicious executable is linked to the Bredolab botnet, which has been linked to massive spam runs and identity-the...

CA BrightStor ARCServe Backup LGServer Arbitrary File Upload (CVE-2007-5005; CVE-2008-1329)

Computer Associates BrightStor ARCserve Backup for Laptops and Desktops provides backup and data recovery for remote, mobile and desktop computers. In general, a backup system is comprised of a server and multiple clients, also known as agents. The server establishes, organizes, and controls all ...

Unrestricted file upload

Unrestricted file upload vulnerability in admin.php in MCshoutbox 1.1 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in smilies/...

CVE-2009-2516

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold and SP1, and Server 2008 Gold does not properly validate data sent from user mode, which allows local users to gain privileges via a crafted PE .exe file that triggers a NULL pointer dereference during chain...

PT-2009-4923 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: The issue arises from insufficient validation of data sent from user mode, allowing local users to gain privileges via a crafted PE .exe file. This could lead to a NULL pointe...

Millenium MP3 Studio 2.0 Stack Overflow

Vulnerability : .mpf File Local Stack Overflow Exploit SEH + Product : Millenium MP3 Studio + Versions affected : v2.0 + Download : http://www.software112.com/products/mp3-millennium+download.html + Method : seh + Tested on : Windows XP SP2/SP3 En + Written by : dellnull dellnullatgmaildotcom +...

Google Apps mailto uri handler cross-browser remote command execution

No description provided by source. google apps googleapps.url.mailto:// uri handler cross-browser remote command execution exploit Internet Explorer by nine:situations:group::pyrokinesis site: http://retrogod.altervista.org/ software site: http://pack.google.com/intl/it/packinstaller.html tested...