8820 matches found
glFTPd 1.17.2 - Code Execution
source: https://www.securityfocus.com/bid/891/info GlFtpd is a popular alternative to the mainstream unix ftp daemons and is currently in wide use on the internet. There are three known serious vulnerabilities in GlFtpd. The first problem is an account which is created by default upon installatio...
SCO Unixware 7.1 - pkg Local Privilege Escalation
SCO Unixware 7.1 - pkg Local Privilege Escalation source: https://www.securityfocus.com/bid/850/info Certain versions of SCO's Unixware only version 7.1 was tested ship with a series of package install/removal utilities which due to design issues under the SCO UnixWare operating system may read a...
AN-HTTPd 1.2b - CGI s
AN-HTTPd 1.2b - CGI s source: https://www.securityfocus.com/bid/762/info Certain versions of the AN-HTTPd server contain default CGI scripts that allow code to be executed remotely. This is due to poor sanity checking on user supplied data. http://www.xxx.yy/cgi-bin/input.bat?|dir....\windows...
PADLOCK.txt
LOWNOISE Advisory: [email protected] by ET. PADLOCK-IT 1.01 =============== DISCLAIMER: Learn, there are dark things behind a nice GUI. Well, maybe this isnt a topic for bugtraq but many people is using this kind of programs to protect all kind of passwords. Dial-up passwords, UNIX accounts, etc...
kki.inactive.connections.txt
Date: Wed, 28 Apr 1999 13:59:28 +0200 From: Lukasz Luzar To: [email protected] Subject: KKIS.28041999.002.b S E C U R I T Y Contacts KKI Security Team Cracow Commercial Internet http://www.security.kki.pl http://www.kki.pl mailto:[email protected] mailto:[email protected] Informations Raport...
testtrack.passwd.dos.txt
Date: Mon, 8 Mar 1999 10:58:17 -0500 From: Fabien Royer To: [email protected] Subject: Password and DOS Vulnerability with Testrack bug tracking software TestTrack, a bug tracking software made by Seapine Software http://www.seapine.com has a number of security problems that allow ...
aimprotocol.txt
http://www.rootshell.com/ Author: [email protected] http://www.foo.org/aim/ A quick note: please, do not kick and scream if this is old news; I don't really watch these things and this is the first I've seen. AOL Instant Messenger doesn't seem to make too much a point of security. Security really isn...
eggdrop137.txt
Date: Wed, 15 Jul 1998 01:03:39 +0200 From: Paul Boehm Subject: eggdrop1.3.17 security Hi, i played around with eggdrop 1.3.17 and looked at it's source searching for security flaws, and found quit a lot of them... most likely there are more of them... Summary: =2E i didn't find any bugs useable...
padlock-it.txt
Date: Fri, 19 Feb 1999 13:51:39 -0500 EST From: ET LoWNOISE To: [email protected] Cc: [email protected] Subject: PADLOCK-IT and TwoFish Hi, 2 months ago, i deliver this advisory to bugtraq... but now i have found that this program is more popular than ever because have been show...
eeye.web.interfaces.txt
Date: Wed, 26 May 1999 06:58:27 -0000 From: Marc To: [email protected] Subject: Multiple Web Interface Security Holes Multiple Web Interface Security Holes Systems Affected CMail 2.3 FTGate 2,1,2,1 NTMail 4.20 Release Date May 26, 1999 Advisory Code AD05261999 Description: The following holes...
[SECURITY] New version of samba released
The version of samba as distributed in Debian GNU/Linux 2.1 has a couple of security problems: a Denial-of-Service attack against nmbd was possible it was possible to exploit smbd if you had a message command defined which used the %f or %M formatter. smbmnts check to see if a user is allowed to...
Greg Matthews - Classifieds.cgi 1.0 Hidden Variable
Greg Matthews - Classifieds.cgi 1.0 Hidden Variable source: https://www.securityfocus.com/bid/2019/info Classifieds.cgi is a perl script part of the classifieds package by Greg Matthews which provides simple classified ads to web sites. Due to improper input validation it can be used to execute a...
CVE-2018-4559
...
CVE-2021-32601
CVE-2021-32601 is rejected/not used per the Initial Description.
CVE-2024-12424
...
CVE-2022-42297
...
Network Associates PGP Keyserver 7.0 Administration Web Console Multiple Vulnerabilities
Advisory ID Internal CORE-2001-0813 Bugtraq ID: None currently assigned. CVE Name: None currently assigned. Title: Network Associates PGP Keyserver 7.0 Administration Web Console Multiple Vulnerabilities Class: Access Validation Error/Design Error Remotely Exploitable: Yes Locally Exploitable: Ye...
CVE-2025-46778
...
CVE-2022-46195
...
CVE-2020-24463
...