Apple Mac OS X 10.2 Terminal.APP Telnet Link Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5768/info Mac OS X is the BSD-based operating system distributed and maintained by Apple. It has been discovered that some types of links, when clicked on, may result in the execution of arbitrary commands. Due to the...

GTK+ 1.2.8 Arbitrary Loadable Module Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2165/info GTK+ is the Gimp Toolkit, freely available to the public and maintained by the GTK Development Team. A problem exists in the Gimp Toolkit that could allow a user elevated privileges. The problem occurs in the...

Zinf 2.2.1 - Local Buffer Overflow Exploit

No description provided by source. / -------------------------------Advisory---------------------------------- Luigi Auriemma aluigiaaaattttttautisticiD000torg I don't know why this bug has not been tracked but moreover I don't completely know why it has not been fixed yet in the Windows version ...

Microsoft Office 2000/2002 Property Code Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18911/info Microsoft Office is prone to a code-execution vulnerability. This is due to a failure to handle exceptional conditions. Successfully exploiting this issue allows attackers to corrupt process memory and to execu...

Slurp 1.10 SysLog Remote Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4935/info slurp is a freely available, open source NNTP client. It is designed for use on most Unix and Linux operating systems. It may be possible for a remote server to execute code on a vulnerable client. slurp offers...

NS_ASG 6.3 /device_status.php 命令执行漏洞

No description provided by source...

CVE-2014-2913

Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor NRPE 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/checknrpe. NOTE: this issue is disputed by multiple parties. It has been reported that the...

update for flash-player (critical)

This flash-player update fixes a critical buffer overflow vulnerability that leads to arbitrary code execution. The flash-player package was updated to version 11.2.202.356. bnc875577, APSB14-13, CVE-2014-0515...

NULL NUKE CMS 2.2 - Multiple Vulnerabilities

NULL NUKE CMS 2.2 - Multiple Vulnerabilities NULL NUKE CMS v2.2 Multiple Vulnerabilities Vendor: nullwanton Product web page: http://sourceforge.net/projects/nullnuke/ Affected version: 2.2 and 2.1 rc3 Summary: NULL-8x3-NUKE is a fast, powerful and secure cross platform CMS for windows and Linux...

innoEDIT 'innoedit.cgi'远程命令执行漏洞

Bugtraq ID:66367 innoEDIT是一款基于WEB的应用。 innoEDIT 'innoedit.cgi'不正确处理提交给'download'参数的数据，允许远程攻击者利用漏洞提交特殊shell元字符，可以WEB权限执行任意命令。 0 innoEDIT 6.2 目前没有详细解决方案提供： http://www.inno.com.mx/innoedit.htm http://www.mtyjet.com/innoedit/innoedit.cgi?download=;id|...

KLA10607 Code execution vulnerability in Microsoft Forefront Protection

An unspecified vulnerability was found in Microsoft Forefront Protection. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed message. Original advisories CVE-2014-0294 Related products...

Corel PDF Fusion XPS Stack Buffer Overflow (CVE-2013-3248)

A code execution vulnerability exists in Corel PDF Fusion...

MGASA-2013-0274 Updated python-setuptools and python-virtualenv packages fix security vulnerability

easyinstall in setuptools before 0.7 uses HTTP to retrieve packages from the PyPI repository, and does not perform integrity checks on package contents, which allows man-in-the-middle attackers to execute arbitrary code via a crafted response to the default use of the product CVE-2013-1633...

OpenNetAdmin 'ona.log' File Remote PHP Code Execution Vulnerability

OpenNetAdmin is prone to a remote PHP code-execution vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

DSquare Exploit Pack: D2SEC_SITESCOPE

Name| d2secsitescope ---|--- CVE| CVE-2013-2367 Exploit Pack| D2ExploitPack Description| HP SiteScope 11.20 runOMAgentCommand Remote Code Execution Vulnerability Notes|...

Cross site request forgery (csrf)

ajax.cgi in the web interface on the Choice Wireless Green Packet WIXFMR-111 4G WiMax modem allows remote attackers to execute arbitrary commands via shell metacharacters in the pip parameter in an Ajax tagipPing request, a different vulnerability than CVE-2013-3581...

vCenter Server Appliance 任意代码执行漏洞(CVE-2013-3079)

BUGTRAQ ID: 59507 CVECAN ID: CVE-2013-3079 VMware vCenter Server可以快速部署虚拟机，并监控物理服务器和虚拟机的性能，可通过单个界面部署、监控和管理虚拟化IT 环境，并确保最佳的服务级别。 vCenter Server Appliance 5.1存在远程代码漏洞。如果一个攻击者经过了身份验证，并且获取了VAMI的访问权，那么就可以以root权限运行现有文件。在默认的vCSA设置中，身份验证局限于root，因为root是唯一定义用户。 0 VMWare vCenter Server 5.x 厂商补丁： VMWare ------...

Ubuntu Update for poppler USN-1785-1

Check for the Version of poppler OpenVAS Vulnerability Test $Id: gbubuntuUSN17851.nasl 7958 2017-12-01 06:47:47Z santu $ Ubuntu Update for poppler USN-1785-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software...

fileutils Gem for Ruby file_utils.rb Crafted URL Handling Remote Command Execution

fileutils Gem for Ruby contains a flaw in fileutils.rb. The issue is triggered when handling a specially crafted URL containing a command after a delimiter ;. This may allow a remote attacker to potentially execute arbitrary commands...

Internet Explorer CDispNode Use After Free (MS13-009; CVE-2013-0023)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer...