3842 matches found
FreeBSD : mplayer -- multiple vulnerabilities (85d76f02-5380-11d9-a9e7-0001020eed82)
iDEFENSE and the MPlayer Team have found multiple vulnerabilities in MPlayer : - Potential heap overflow in Real RTSP streaming code - Potential stack overflow in MMST streaming code - Multiple buffer overflows in BMP demuxer - Potential heap overflow in pnm streaming code - Potential buffer...
FreeBSD : unrtf -- buffer overflow vulnerability (f2d5e56e-67eb-11d9-a9e7-0001020eed82)
Yosef Klein and Limin Wang have found a buffer overflow vulnerability in unrtf that can allow an attacker to execute arbitrary code with the permissions of the user running unrtf, by running unrtf on a specially crafted rtf document. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
FreeBSD : unace -- multiple vulnerabilities (1d3a2737-7eb7-11d9-acf7-000854d03344)
Ulf Harnhammar reports : - There are buffer overflows when extracting, testing or listing specially prepared ACE archives. - There are directory traversal bugs when extracting ACE archives. - There are also buffer overflows when dealing with long 17000 characters command line arguments. Secunia...
GLSA-200507-09 : Adobe Acrobat Reader: Buffer overflow vulnerability
The remote host is affected by the vulnerability described in GLSA-200507-09 Adobe Acrobat Reader: Buffer overflow vulnerability A buffer overflow has been discovered in the UnixAppOpenFilePerform function, which is called when Adobe Acrobat Reader tries to open a file with the '\Filespec' tag...
DSA-747-1 egroupware - input validation error
Bulletin has no description...
Debian DSA-745-1 : drupal - input validation errors
Two input validation errors were discovered in drupal and its bundled xmlrpc module. These errors can lead to the execution of arbitrary commands on the web server running drupal. drupal was not included in the old stable distribution woody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Th...
[SECURITY] [DSA 742-1] New cvs packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 742-1 [email protected] http://www.debian.org/security/ Martin Schulze July 7th, 2005 http://www.debian.org/security/faq -...
Cross site scripting in Lotus Notes web mail
When an HTML file attachment is opened in a lotus notes account via the web mail interface, the user sees that there is an attachment. Clicking the attachment does not prompt for saving or opening like in Yahoo, but opens the malicious HTML immediately, allowing for stealing of the LTPA session...
[Full-disclosure] ekg insecure temporary file creation and arbitrary code execution
ekg insecure temporary file creation and arbitrary code execution Vendor: http://dev.null.pl/ekg/ Advisory: http://www.zataz.net/adviso/ekg-06062005.txt Vendor informed: yes Exploit available: no Impact : high Exploitation : high The vulnerabilities are caused due to temporary file being created...
phpBB 2.0.15 (highlight) Remote PHP Code Execution
No description provided by source. tested and working /str0ke !/usr/bin/pyth0n this exploit for phpBB 2.0.15 print "\nphpBB 2.0.15 arbitrary command execution eXploit" emulates a shell, print " 2005 by [email protected]" rather than print " well, just because there is none." sending a singl...
CVE-2002-1750
csGuestbook.cgi in CGISCRIPT.NET csGuestbook 1.0 allows remote attackers to execute arbitrary Perl code via the setup parameter, which is processed by the Perl eval function...
Novell ZENworks Multiple Remote Pre-Authentication Overflows
The remote host is running Novell ZENworks Desktop or Server Management, a remote desktop management software. The remote version of this software is affected by multiple heap and stack overflow vulnerabilities which may be exploited by an attacker to to execute arbitrary code on the remote host...
Microsoft Outlook Express 4.x5.x6.0 - Attachment Processing File Extension Obfuscation
Microsoft Outlook Express 4.x5.x6.0 - Attachment Processing File Extension Obfuscation source: https://www.securityfocus.com/bid/13837/info Microsoft Outlook Express is prone to an attachment file extension obfuscation vulnerability that may present a risk under certain configurations. The issue...
Microsoft Internet Explorer JavaScript OnLoad Handler Remote Code Execution Vulnerability
Description Microsoft Internet Explorer is affected by a remote code execution vulnerability. This vulnerability presents itself when the browser handles a JavaScript 'onLoad' handler in conjunction with an improperly initialized 'window' JavaScript function. This issue may be exploited to execut...
CVE-2005-0150
Firefox before 1.0 allows the user to store a 1 javascript: or 2 data: URLs as a Livefeed bookmark, then executes it in the security context of the currently loaded page when the user later accesses the bookmark, which could allow remote attackers to execute arbitrary code...
CVE-2005-0392
ppxp does not drop root privileges before opening log files, which allows local users to execute arbitrary commands...
CVE-2005-1632
CVE-2005-1632 affects Cheetah 0.9.15 and 0.9.16. The root cause is that the runtime searches /tmp for modules before honoring PYTHONPATH, enabling a local attacker to execute arbitrary code via a malicious module placed in /tmp/. The linked Red Hat and Debian trackers echo this same issue. No exp...
GLSA-200505-10 : phpBB: XSS Vulnerability
The remote host is affected by the vulnerability described in GLSA-200505-10 phpBB: XSS Vulnerability phpBB is vulnerable to a cross-site scripting vulnerability due to improper sanitization of user-supplied input. Coupled with poor validation of BBCode URLs which may be included in a forum post,...
pserv 3.2 - Directory Traversal
pserv 3.2 - Directory Traversal source: https://www.securityfocus.com/bid/13642/info pServ is prone to a directory traversal vulnerability. This occurs because the application does not implement a proper method for filtering directory traversal sequences from URIs. Since this can be done from the...
CVE-2005-1544
Stack-based buffer overflow in libTIFF before 3.7.2 allows remote attackers to execute arbitrary code via a TIFF file with a malformed BitsPerSample tag...