Mac OS X <= 10.4.7 Mach Exception Handling Local Root Exploit

Exploit for macOS platform in category local exploits ============================================================= Mac OS X include include include extern booleant excservermachmsgheadert , machmsgheade...

Apple Mac OSX 10.4.7 - Mach Exception Handling Privilege Escalation

Apple Mac OSX 10.4.7 - Mach Exception Handling Privilege Escalation / excploit.c - 28 Nov 2005 - [email protected] Exploitable Mach Exception Handling Affected: Mac OS X 10.4.6 darwin 8.6.0 and older When a process executes a setuid executable, all existing rights to the task port are...

CVE-2006-4922

CVE-2006-4922 describes an unrestricted file upload in Site@School (S@S) 2.4.02 and earlier, specifically in starnet/editors/htmlarea/popups/images.php. The vulnerability enables remote attackers to upload and execute arbitrary files with executable extensions. The available documents identify th...

CVE-2006-4675

Unrestricted file upload vulnerability in lib/exe/media.php in DokuWiki before 2006-03-09c allows remote attackers to upload executable files into the data/media folder via unspecified vectors...

CVE-2006-4675

Unrestricted file upload vulnerability in lib/exe/media.php in DokuWiki before 2006-03-09c allows remote attackers to upload executable files into the data/media folder via unspecified vectors...

DEBIAN-CVE-2006-4675

Unrestricted file upload vulnerability in lib/exe/media.php in DokuWiki before 2006-03-09c allows remote attackers to upload executable files into the data/media folder via unspecified vectors...

CVE-2006-4675

The CVE-2006-4675 entry corresponds to an Unrestricted file upload vulnerability in DokuWiki (lib/exe/media.php) prior to 2006-03-09c, allowing remote attackers to upload executable files into the data/media folder via unspecified vectors. Several connected sources (NVD, OSV, Gentoo GLSA, FreeBSD...

CVE-2006-4675

Unrestricted file upload vulnerability in lib/exe/media.php in DokuWiki before 2006-03-09c allows remote attackers to upload executable files into the data/media folder via unspecified vectors...

CVE-2006-4617

Unrestricted file upload vulnerability in fileupload.html in vtiger CRM 4.2.4, and possibly earlier versions, allows remote attackers to upload and execute arbitrary files with executable extensions in the /cashe/mails folder...

CVE-2006-4617

Unrestricted file upload vulnerability in fileupload.html in vtiger CRM 4.2.4, and possibly earlier versions, allows remote attackers to upload and execute arbitrary files with executable extensions in the /cashe/mails folder...

ClamAV: Heap buffer overflow

Background ClamAV is a GPL virus scanner. Description Damian Put has discovered a boundary error in the pefromupx function used by the UPX extraction module, which unpacks PE Windows executable files. Both the "clamscan" command-line utility and the "clamd" daemon are affected. Impact By sending ...

[SECURITY] [DSA 1135-1] New libtunepimp packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1135-1 [email protected] http://www.debian.org/security/ Martin Schulze August 2nd, 2006 http://www.debian.org/security/faq -...

CentOS 3 : elfutils (CESA-2006:0368)

Updated elfutils packages that address a minor security issue and various other issues are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The elfutils packages contain a number of utility programs and libraries related to the creatio...

RHEL 3 : elfutils (RHSA-2006:0368)

Updated elfutils packages that address a minor security issue and various other issues are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The elfutils packages contain a number of utility programs and libraries related to the creatio...

Security Best Practice: Protect Yourself from Directory Traversal

Directory traversal attacks allow hackers to access files and directories that should be out of their reach. This can allow viewing of directory listings, and in many attacks, could lead to running executable code on the web server with one simple URL...

ASP.NET source code disclosure

It's possible to retrieve source codes for scripts and executable, except protected file extensions...

twiki -- multiple file extensions file upload vulnerability

A TWiki Security Alert reports: The TWiki upload filter already prevents executable scripts such as .php, .php1, .phps, .pl from potentially getting executed by appending a .txt suffix to the uploaded filename. However, PHP and some other types allows additional file suffixes, such as .php.en,...

WinRAR 3.60 Beta 6 - SFX Path Stack Overflow

""" WinRAR - Stack Overflows in SelF - eXtracting Archives ====================================================== Tested Versions..: WinRAR 3.60 beta 4 Author.............: posidron An SFX SelF-eXtracting archive is an archive, merged with an executable module, which is used to extract files from...

CentOS 3 : binutils (CESA-2005:659)

An updated binutils package that fixes several bugs and minor security issues is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Binutils is a collection of utilities used for the creation of executable code. A number of bugs were fou...

IIS Unicode Directory Traversal

Added: 07/03/2006 CVE: CVE-2000-0884 BID: 1806 OSVDB: 436 Background Microsoft IIS is a web server for Windows platforms. Problem Microsoft IIS 4.0 and 5.0 allow path validation checks to be bypassed by encoding invalid characters in Unicode. For example, a slash character is represented as %c0%a...