6687 matches found
CVE-2012-3578
Unrestricted file upload vulnerability in html/Upload.php in the FCChat Widget plugin 2.2.13.1 and earlier for WordPress allows remote attackers to execute arbitrary code by uploading a file with a file with an executable extension followed by a safe extension, then accessing it via a direct...
Unrestricted file upload
Unrestricted file upload vulnerability in html/Upload.php in the FCChat Widget plugin 2.2.13.1 and earlier for WordPress allows remote attackers to execute arbitrary code by uploading a file with a file with an executable extension followed by a safe extension, then accessing it via a direct...
CVE-2012-3575
Unrestricted file upload vulnerability in uploader.php in the RBX Gallery plugin 2.1 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/rbxslider...
CVE-2012-3575
Unrestricted file upload vulnerability in uploader.php in the RBX Gallery plugin 2.1 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/rbxslider...
MS12-005 Microsoft Office ClickOnce Unsafe Object Package Handling Vulnerability
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' require 'rex/zip' class Metasploit3...
CVE-2012-2040
Untrusted search path vulnerability in the installer in Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and before 11.1.115.9 on Android 4.x, and Adobe...
The star outside the mention of the right new ideas&the star outside security Bulletin(mention the right vulnerability)-vulnerability warning-the black bar safety net
Statement, This is not what a star outside 0DAY, which at Best, only one in could not find a writable executable directory of a mention of the right ideas. I dare not say that I first found, there may be other people also found, and also in the use. In fact, numerous examples demonstrate that the...
Design/Logic Flaw
The capbprmsetcreds function in security/commoncap.c in the Linux kernel before 3.3.3 does not properly handle the use of file system capabilities aka fcaps for implementing a privileged executable file, which allows local users to bypass intended personality restrictions via a crafted applicatio...
kernel: fcaps: clear the same personality flags as suid when fcaps are used
The capbprmsetcreds function in security/commoncap.c in the Linux kernel before 3.3.3 does not properly handle the use of file system capabilities aka fcaps for implementing a privileged executable file, which allows local users to bypass intended personality restrictions via a crafted applicatio...
Code injection
Comodo Internet Security before 5.10.228257.2253 on Windows 7 x64 allows local users to cause a denial of service system crash via a crafted 32-bit Portable Executable PE file with a kernel ImageBase value...
CVE-2012-2273
Comodo Internet Security before 5.10.228257.2253 on Windows 7 x64 allows local users to cause a denial of service system crash via a crafted 32-bit Portable Executable PE file with a kernel ImageBase value...
CVE-2012-2123
The capbprmsetcreds function in security/commoncap.c in the Linux kernel before 3.3.3 does not properly handle the use of file system capabilities aka fcaps for implementing a privileged executable file, which allows local users to bypass intended personality restrictions via a crafted applicatio...
ClamAV AntiVirus UPX Compressed PE Executable Files Buffer Overflow (CVE-2005-2920)
A buffer overflow vulnerability has been reported in ClamAV anti-virus product...
Windows Authenticode Signature Remote Code Execution Vulnerability (2653956)
This host is missing a critical security update according to Microsoft Bulletin MS12-024. OpenVAS Vulnerability Test $Id: secpodms12-024.nasl 5346 2017-02-19 08:43:11Z cfi $ Windows Authenticode Signature Remote Code Execution Vulnerability 2653956 Authors: Rachana Shetty Copyright: Copyright c...
Input validation
The Authenticode Signature Verification function in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview does not properly validate the digest of a signed portable executable P...
CVE-2012-0151
The Authenticode Signature Verification function in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview does not properly validate the digest of a signed portable executable P...
PT-2012-1231 · Microsoft · Windows Xp +6
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview Description: The Authenticode Signature Verification functi...
Microsoft Windows Authenticode Signature Verification Function Remote Code Execution Vulnerability
Description Microsoft Windows Authenticode Signature Verification is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting victim to run or install a specially modified signed Portable Executable PE file. Successful exploits can allow attacke...
ALFTP Insecure Executable File Loading Vulnerability
This host is installed with ALFTP and is prone to insecure executable file loading vulnerability. OpenVAS Vulnerability Test $Id: secpodalftpinsecureexecfileloadvuln.nasl 6018 2017-04-24 09:02:24Z teissa $ ALFTP Insecure Executable File Loading Vulnerability Authors: Madhuri D Copyright: Copyrigh...
ALFTP Insecure Executable File Loading Vulnerability
ALFTP is prone to insecure executable file loading vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...