4202 matches found
Important: Red Hat Security Advisory: ghostscript security update
A ghostscript package fixing a command execution vulnerability is now available. GNU Ghostscript is an interpreter for the PostScript language, and is often used when printing to printers that do not have their own built-in PostScript interpreter. A flaw has been discovered in the way Ghostscript...
Infinity CGI Exploit Scanner Multiple Vulnerabilities
The remote is running Infinity Exploit Scanner, a web-based CGI vulnerability scanner implemented in perl and stored under the name 'nph-exploitscanget.cgi'. There is a flaw in this CGI that lets an attacker execute arbitrary commands on this host. In addition to this, there is a flaw in this CGI...
Microsoft Internet Explorer 6 - '%USERPROFILE%' File Execution
source: https://www.securityfocus.com/bid/7826/info Microsoft Internet Explorer is prone to an issue which could permit an attacker to load a known, existing file in a user's temporary directory or possibly other directories in a user's profile. It is possible to exploit this issue via a maliciou...
W3Mail 1.0.2 выполнение команд
Hi! Я обнаружил возможность выполнения команд в W3Mail 1.0.2. Это мощная система для работы с почтой. Это что-то вроде многопользовательского mail-клиента с web интерфейсом. Главная дыра находится в скрипте delete.cgi. Вот кусок кода файла delete.cgi: ... берём логин, пасс и сервак с ящиком...
BLNews 2.1.3 - Remote File Inclusion
source: https://www.securityfocus.com/bid/7677/info It has been reported that BLNews is prone to a remote file include vulnerability. This is due to the incorrection initilization of some PHP headers within the application. As a result, an attacker may be capable of executing arbitrary PHP comman...
CVE-2003-0188
CVE-2003-0188: lv, a multilingual file viewer, reads a .lv configuration file from the current working directory. A crafted .lv file placed in a directory can cause lv to execute arbitrary commands as the invoking user, enabling local privilege escalation (including root) on affected systems. Pub...
Stockman Shopping Cart 7.8 - Arbitrary Command Execution
Stockman Shopping Cart 7.8 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/7485/info Stockman Shopping Cart has been reported prone to a remote command execution vulnerability. This issue presents itself in the 'shop.plx' script. The problem results from a lack of sufficie...
DSA-294 gkrellm-newsticker - missing quoting, incomplete parser
Bulletin has no description...
CVE-2002-0372
Microsoft Windows Media Player versions 6.4 and 7.1 and Media Player for Windows XP allow remote attackers to bypass Internet Explorer's IE security mechanisms and run code via an executable .wma media file with a license installation requirement stored in the IE cache, aka the "Cache Path...
Microsoft Security Bulletin MS03-008: Flaw in Windows Script Engine Could Allow Code Execution (814078)
-----BEGIN PGP SIGNED MESSAGE----- - ------------------------------------------------------------------- Title: Flaw in Windows Script Engine Could Allow Code Execution 814078 Date: 19 March 2003 Software: Microsoft Windows 98 Microsoft Windows 98 Second Edition Microsoft Windows Me Microsoft...
Man Program 1.5 - Unsafe Return Value Command Execution
Man Program 1.5 - Unsafe Return Value Command Execution source: https://www.securityfocus.com/bid/7066/info It has been reported that the man program does not properly handle some types of input. When a man page is processed that could pose a potential security risk, the program reacts in a way...
CVE-2002-1403
dhcpcd DHCP client daemon 1.3.22 and earlier allows local users to execute arbitrary code via shell metacharacters that are fed from a dhcpd .info script into a .exe script...
S-plus /tmp usage
INTRODUCTION S-PLUS is a Statistical analysis, graphics and programming tool http://www.statsci.com/ http://www.insightful.com/ PROBLEM As installed on UNIX machines, Splus uses files in /tmp in an unsafe way. DETAILS The main Sqpe binary, and various shell script modules, use files in /tmp:...
CVE-2002-1874
astrocam.cgi in AstroCam 0.9-1-1 through 1.4.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTP request. NOTE: earlier disclosures stated that the affected versions were 1.7.1 through 2.1.2, but the vendor explicitly stated that these were incorrect...
Cobalt RaQ4 Administrative Interface overflow.cgi Command Execution
/cgi-bin/.cobalt/overflow/overflow.cgi was detected. Some versions of this CGI allow remote users to execute arbitrary commands with the privileges of the web server. Nessus just checked the presence of this file but did not try to exploit the flaw, so this might be a false positive. %NASLMINLEVE...
Tetex command execution
Uncommented shell characters during system call in kpathsea library...
MS02-052: Flaw in Microsoft VM Could Allow Code Execution (810030)
The remote host is running a Microsoft VM machine that has a bug in its bytecode verifier that could allow a remote attacker to execute arbitrary code on this host, with the privileges of the SYSTEM. To exploit this vulnerability, an attacker would need to send a malformed applet to a user on thi...
SCAN Associates Advisory: madhater perlbot 1.0 beta - Remote Command Execution
perlbot 1.0 beta - Remote Command Execution Discovered By guejez of scan-associates.net About perlbot: ------------------ quote from perlbot website "" /quote from perlbot website perlbot is avaliable at http://stigmata.gothcafe.com/madhater Vulnerable tested Versions: -------------------- Perlbo...
CVE-2002-0694
The HTML Help facility in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP uses the Local Computer Security Zone when opening .chm files from the Temporary Internet Files folder, which allows remote attackers to...
CVE-2002-0904
SayText function in Kismet 2.2.1 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters backtick or pipe in the essid argument...