1913 matches found
DEBIAN-CVE-2009-0415
Untrusted search path vulnerability in trickle 1.07 allows local users to execute arbitrary code via a Trojan horse trickle-overload.so in the current working directory, which is referenced in the LDPRELOAD path...
MS Windows 2003 Token Kidnapping Local Exploit PoC
No description provided by source. From http://nomoreroot.blogspot.com/2008/10/windows-2003-poc-exploit-for-token.html It has been a long time since Token Kidnapping presentation http://www.argeniss.com/research/TokenKidnapping.pdf was published so I decided to release a PoC exploit for Win2k3 th...
FreeBSD Ports: sup
The remote host is missing an update to the system as announced in the referenced advisory. VID 2c5757f4-88bf-11d9-8720-0007e900f87b OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Code injection
The Aggregation module 5.x before 5.x-4.4 for Drupal allows remote attackers to upload files with arbitrary extensions, and possibly execute arbitrary code, via a crafted feed that allows upload of files with arbitrary extensions...
Wireshark 1.0.0 - Multiple Denial of Service Vulnerabilities
Wireshark 1.0.0 - Multiple Denial of Service Vulnerabilities source: https://www.securityfocus.com/bid/30020/info Wireshark is prone to multiple vulnerabilities, including an information-disclosure issue and denial-of-service issues. Exploiting these issues may allow attackers to obtain potential...
DEBIAN-CVE-2008-2230
Untrusted search path vulnerability in 1 reportbug 3.8 and 3.31, and 2 reportbug-ng before 0.2008.06.04, allows local users to execute arbitrary code via a malicious module file in the current working directory...
RealSecure / Blackice iss_pam1.dll Remote Overflow Exploit
No description provided by source. / 557isspamexp - RealSecure / Blackice ICQ isspam1.dll remote overflow exploit Copyright c SST 2004 All rights reserved. Public version code by Sam Sam@efnet and 2004/03/26 [email protected] [email protected] ...
Adobe Flash Player integer overflow vulnerability
Overview Adobe Flash contains an integer overflow vulnerability. This vulnerability may allow an attacker to execute code on an affected system. Description The Adobe Flash Player is a player for the Flash media format and enables frame-based animations and multimedia to be viewed within a web...
LICQ 1.3.5 - File Descriptor Remote Denial of Service
// source: https://www.securityfocus.com/bid/28679/info LICQ is prone to a remote denial-of-service vulnerability because the application fails to handle exceptional conditions. A remote attacker can exploit this issue to crash the affected application, denying service to legitimate users. The...
CVE-2008-0890
Red Hat Directory Server 7.1 before SP4 uses insecure permissions for certain directories, which allows local users to modify JAR files and execute arbitrary code via unknown vectors...
7.1: insecure default permissions on jars directory
Red Hat Directory Server 7.1 before SP4 uses insecure permissions for certain directories, which allows local users to modify JAR files and execute arbitrary code via unknown vectors...
openSUSE 10 Security Update : ghostscript-fonts-other (ghostscript-fonts-other-4985)
A stackbased buffer overflow was fixed in the ghostscript interpreter, which potentially could be used to execute code or at least crash ghostscript. CVE-2008-0411 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
SuSE 10 Security Update : Ghostscript (ZYPP Patch Number 4984)
A stack-based buffer overflow was fixed in the ghostscript interpreter, which potentially could be used to execute code or at least crash ghostscript. CVE-2008-0411 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
CVE-2008-0984
The MP4 demuxer mp4.c for VLC media player 0.8.6d and earlier, as used in Miro Player 1.1 and earlier, allows remote attackers to overwrite arbitrary memory and execute arbitrary code via a malformed MP4 file...
openSUSE 10 Security Update : kernel (kernel-4970)
This kernel update is a respin of a previous one that broke CPUFREQ support bug 357598. Previous changes : This kernel update fixes the following security problems : CVE-2008-0007: Insufficient range checks in certain fault handlers could be used by local attackers to potentially read or write...
CVE-2007-6415
scponly 4.6 and earlier allows remote authenticated users to bypass intended restrictions and execute arbitrary code by invoking scp, as implemented by OpenSSH, with the -F and -o options...
Coppermine Photo Gallery 1.4.10 - cpg1410_xek.php SQL Injection
Coppermine Photo Gallery 1.4.10 - cpg1410xek.php SQL Injection toHex$sql . ', ' . $this-toHex'bazik' . ' LIMIT 1,1/'; $b1 = 'bazik'; $a2 = $sql; $b2 = 'bazik'; $arr = array$a1 = $b1, $a2 = $b2; return $this-GLOBALS'prefix' . 'albpw=' . rawurlencodeserialize$arr; function toHex$str for $i=0; $i...
Debian Security Advisory DSA 1278-1 (man-db)
The remote host is missing an update to man-db announced via advisory DSA 1278-1. A buffer overflow has been discovered in the man command that could allow an attacker to execute code as the man user by providing specially crafted arguments to the -H flag. This is likely to be an issue only on...
SuSE 10 Security Update : gnomemeeting (ZYPP Patch Number 3163)
This update fixes format string problems in gnomemeeting which might be used by remote attackers to crash gnomemeeting and on older distributions potentially execute code. CVE-2007-1007 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
SuSE 10 Security Update : Xorg X11 (ZYPP Patch Number 3083)
Integer overflows in the XC-MISC extension of the X-server could potentially be exploited to execute code with root privileges. CVE-2007-1003 Integer overflows in libx11 could cause crashes. CVE-2007-1667 Integer overflows in the font handling of the X-server could potentially be exploited to...