1872 matches found
CVE-2000-1077
Buffer overflow in the SHTML logging functionality of iPlanet Web Server 4.x allows remote attackers to execute arbitrary commands via a long filename with a .shtml extension...
Microsoft Internet Explorer 5 - 'INPUT TYPE=FILE' Remote File Upload
Example.. IE 5 Version...
CVE-1999-0464
Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames...
CVS 1.10.7 - Local Denial of Service
CVS 1.10.7 - Local Denial of Service source: https://www.securityfocus.com/bid/1136/info CVS stands for Concurrent Versions Software and is an open-source package designed to allow multiple developers to work concurrently on a single source tree, recording changes and controlling versions. It is...
CVS 1.10.7 - Local Denial of Service
source: https://www.securityfocus.com/bid/1136/info CVS stands for Concurrent Versions Software and is an open-source package designed to allow multiple developers to work concurrently on a single source tree, recording changes and controlling versions. It is possible to cause a denial of service...
[SECURITY] New version of nvi released
Package: nvi Vulnerability type: local attack Debian-specific: no The version of nvi that was distributed with Debian GNU/Linux 2.1 has an error in the default /etc/init.d/nviboot script: it did not handle filenames with embedded spaces correctly. This made it possible to remove files in the root...
IBM Network Station Manager 2.0 R1 - Race Condition
// source: https://www.securityfocus.com/bid/900/info IBM's Network Station Manager is a client/server application which facilitates management for IBM Network Stations. It is possible to locally gain root priviliges on hosts running the NetStation daemon. NetStation which runs as root creates...
Microsoft Windows 9598 - UNC Buffer Overflow (1)
Microsoft Windows 9598 - UNC Buffer Overflow 1 // source: https://www.securityfocus.com/bid/779/info There is a overflowable buffer in the networking code for Windows 95 and 98 all versions. The buffer is in the part of the code that handles filenames. By specifying an exceptionally long filename...
netscape.fasttrack.3.x.txt
Date: Mon, 7 Jun 1999 10:59:15 +0200 From: "iso-8859-1 Jesús López de Aguileta" To: [email protected] Subject: Netscape Fasttrack 3.01 allows directory listing Hi all, I recently have downloaded a trial version of Fasttrack server 3.01 for NT According to Netscape documentation:...
CVE-1999-0464
Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames...
CVE-1999-1421
NBase switches NH208 and NH215 run a TFTP server which allows remote attackers to send software updates to modify the switch or cause a denial of service crash by guessing the target filenames, which have default names...
PT-2008-6959 · Suse · Yast2-Backup
Name of the Vulnerable Software and Affected Versions: yast2-backup versions 2.14.2 through 2.16.6 Description: The issue allows local users to gain privileges via shell metacharacters in filenames used by the backup process, potentially leading to a violation of confidentiality, integrity, and...