Security Bulletin MS02-057: Flaw in Services for Unix 3.0 Interix SDK Could Allow Code Execution (Q329209)

---------------------------------------------------------------------- Title: Flaw in Services for Unix 3.0 Interix SDK Could Allow Code Execution Q329209 Released: 02 October 2002 Software: Services for Unix 3.0 Interix SDK Impact: Buffer overrun and denial of service Max Risk: Moderate...

EmuMail 5.0 Email Form - Script Injection

EmuMail 5.0 Email Form - Script Injection source: https://www.securityfocus.com/bid/5824/info Emumail is an open source web mail application. It is available for the Unix, Linux, and Microsoft Windows operating systems. It has been reported that EmuMail does not properly sanitize input. Under som...

Achievo 0.70.80.9 - Remote File Inclusion Command Execution

Achievo 0.70.80.9 - Remote File Inclusion Command Execution source: https://www.securityfocus.com/bid/5552/info Achievo includes a PHP script which is used to generate JavaScript class.atkdateattribute.js.php. This script employs a number of PHP includeonce statements to call code contained in...

Directory Manager edit_image.php Arbitrary Command Execution

Directory Manager is installed and does not properly filter user input. A remote attacker may use this flaw to execute arbitrary commands. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid11104; scriptversion"1.26";...

DSA-156 epic4-script-light - arbitrary script execution

Bulletin has no description...

SCPOnly 2.3/2.4 - SSH Environment Shell Escaping

source: https://www.securityfocus.com/bid/5526/info scponly is a freely available, open source restricted secure copy client. It is available for Unix and Linux operating systems. The default installation of scponly does not place sufficient access controls on the .ssh subdirectory. Due to this...

DSA-153 mantis - cross site code execution and privilege escalation

Bulletin has no description...

CVE-2002-0700

Buffer overflow in a system function that performs user authentication for Microsoft Content Management Server MCMS 2001 allows attackers to execute code in the Local System context by authenticating to a web page that calls the function, aka "Unchecked Buffer in MDAC Function Could Enable SQL...

Microsoft Mediaplayer ediaplayer .ASX/.NSC/.ASF buffer overflow, .WMS code execution

Oversized tag in .asx file causes buffer overflows. Skins allow code execution on client side with .WMS files...

CVE-2002-0437

Smsd in SMS Server Tools SMStools before 1.4.8 allows remote attackers to execute arbitrary commands via shell metacharacters backquotes in message text, as described with the term "string format vulnerability" by some sources...

Important: Red Hat Security Advisory: php security update

PHP versions earlier than 4.1.0 contain a vulnerability that could allow arbitrary commands to be executed. updated 22 Aug 2002 The initial set of errata packages contained an incorrect set of dependencies. This meant that a number of packages would need to be installed before php that were not...

CVE-2002-1056

Microsoft Outlook 2000 and 2002, when configured to use Microsoft Word as the email editor, does not block scripts that are used while editing email messages in HTML or Rich Text Format RTF, which could allow remote attackers to execute arbitrary scripts via an email that the user forwards or...

CVE-2001-0727

Internet Explorer 6.0 allows remote attackers to execute arbitrary code by modifying the Content-Disposition and Content-Type header fields in a way that causes Internet Explorer to believe that the file is safe to open without prompting the user, aka the "File Execution Vulnerability."...

CVE-2001-0727

Summary of CVE-2001-0727 (File Execution Vulnerability) : Internet Explorer 6.0 on Windows is affected by a vulnerability in MIME header handling (Content-Disposition and Content-Type). An attacker can cause code execution by modifying headers to disguise downloaded content as safe, potentially t...

ZeroBoard 4.1 - PHP Include File Arbitrary Command Execution

source: https://www.securityfocus.com/bid/5028/info Zeroboard is a PHP web board package available for the Linux and Unix platforms. Under some circumstances, it may be possible to include arbitrary PHP files. The head.php file does not sufficiently check or sanitize input. When the "allowurlfope...

Important: Red Hat Security Advisory: : Ghostscript command execution vulnerability

Updated packages are available for GNU Ghostscript which fix a vulnerability found during Postscript interpretation. Ghostscript is a program for displaying PostScript files or printing them to non-PostScript printers. An untrusted PostScript file can cause ghostscript to execute arbitrary comman...

CVE-2002-0277

Add2it Mailman Free 1.73 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the list parameter...

Apache on Windows < 1.3.24 / 2.0.x < 2.0.34 DOS Batch File Arbitrary Command Execution

Apache for Win32 prior to 1.3.24 and 2.0.x prior to 2.0.34-beta is shipped with a default script, '/cgi-bin/test-cgi.bat', that allows an attacker to remotely execute arbitrary commands on the host subject to the permissions of the affected application. An attacker can send a pipe character '|'...

csSearch csSearch.cgi setup Parameter Arbitrary Command Execution

The version of csSearch running on the remote host has a command execution vulnerability. Input to the 'print' parameter of 'csSearch.cgi' is not properly sanitized. A remote attacker could exploit this by executing arbitrary system commands with the privileges of the web server. %NASLMINLEVEL...

phpBB2 remote execution command

phpBB2 is vulnerable to remote execution command All nix running phpBB2 versoion 2.0. Bug could be found at "phpBB2 root path" which is allowed remote attacker to execute any command remotely. The vulnerability of this attack start with '/phpBB2/includes/db.php?phpbbrootpath=' but some backdoor...