5019 matches found
CVE-2009-0014
Folder Manager in Apple Mac OS X 10.5.6 uses insecure default permissions when recreating a Downloads folder after it has been deleted, which allows local users to bypass intended access restrictions and read the Downloads folder...
Default configuration
Folder Manager in Apple Mac OS X 10.5.6 uses insecure default permissions when recreating a Downloads folder after it has been deleted, which allows local users to bypass intended access restrictions and read the Downloads folder...
CVE-2009-0014
CVE-2009-0014 affects Apple Mac OS X 10.5.6 Folder Manager, where the Downloads folder is recreated with insecure default permissions, allowing local users to read the Downloads folder and bypass restrictions. The issue is a local vulnerability tied to the folder creation permissions, as describe...
CVE-2009-0014
Folder Manager in Apple Mac OS X 10.5.6 uses insecure default permissions when recreating a Downloads folder after it has been deleted, which allows local users to bypass intended access restrictions and read the Downloads folder...
Mac OS X Multiple Vulnerabilities (Security Update 2009-001)
The remote host is running a version of Mac OS X 10.5 or 10.4 that does not have Security Update 2009-001 applied. This security update contains fixes for the following products : - AFP Server - Apple Pixlet Video - CarbonCore - CFNetwork - Certificate Assistant - ClamAV - CoreText - CUPS - DS...
Yet Another NOCC <= 0.1.0 Local File Inclusion Vulnerability
No description provided by source. Yet Another NOCC 0.1.0 = Local File Inclusion Vulnerabilities YANOCC is a simple and fast webmail client which can handle POP3, SMTP, and IMAP servers. YANOCC is based on NOCC's code and is written with PHP4. It features multi-language support, MIME attachments,...
Directory traversal
Directory traversal vulnerability in the OBEX FTP Service in the Microsoft Bluetooth stack in Windows Mobile 6 Professional, and probably Windows Mobile 5.0 for Pocket PC and 5.0 for Pocket PC Phone Edition, allows remote authenticated users to list arbitrary directories, and create or read...
Upload command to Startup folder
Added: 01/20/2009 Background Each user's Startup folder on Windows systems contains programs which run at start-up time. This tool attempts to upload a command connection to a user's Startup folder. If successful, the connection will be established the next time the computer starts. Limitations A...
Upload command to Startup folder
Added: 01/20/2009 Background Each user's Startup folder on Windows systems contains programs which run at start-up time. This tool attempts to upload a command connection to a user's Startup folder. If successful, the connection will be established the next time the computer starts. Limitations A...
Upload command to Startup folder
Added: 01/20/2009 Background Each user's Startup folder on Windows systems contains programs which run at start-up time. This tool attempts to upload a command connection to a user's Startup folder. If successful, the connection will be established the next time the computer starts. Limitations A...
Upload command to Startup folder
Added: 01/20/2009 Background Each user's Startup folder on Windows systems contains programs which run at start-up time. This tool attempts to upload a command connection to a user's Startup folder. If successful, the connection will be established the next time the computer starts. Limitations A...
Viart shopping cart 3.5 - Multiple Vulnerabilities
=============================================================== !vuln ViArt Shopping Cart v3.5 is prone to multiple remote vulnerabilities. Earlier versions may also be affected. ===============================================================...
phpGreetCards XSS / File Upload
................................................................................................... remote shell upload/xss script: phpGreetCards download from:http://www.w2b.ru/download/phpGreetCards.zip www.site.com/path/index.php?mode=select&category shell:...
Remote code execution
The Trend Micro HouseCall ActiveX control 6.51.0.1028 and 6.6.0.1278 in HousecallActiveX.dll allows remote attackers to download an arbitrary library file onto a client system via a "custom update server" argument. NOTE: this can be leveraged for code execution by writing to a Startup folder...
CVE-2008-2434
The Trend Micro HouseCall ActiveX control 6.51.0.1028 and 6.6.0.1278 in HousecallActiveX.dll allows remote attackers to download an arbitrary library file onto a client system via a "custom update server" argument. NOTE: this can be leveraged for code execution by writing to a Startup folder...
phpGreetCards - Cross-Site Scripting Arbitrary File Upload
phpGreetCards - Cross-Site Scripting Arbitrary File Upload ................................................................................................... remote shell upload/xss script: phpGreetCards download from:http://www.w2b.ru/download/phpGreetCards.zip...
phpGreetCards XSS/Arbitrary File Upload Vulnerability
Exploit for unknown platform in category web applications ===================================================== phpGreetCards XSS/Arbitrary File Upload Vulnerability =====================================================...
phpGreetCards - Cross-Site Scripting / Arbitrary File Upload
................................................................................................... remote shell upload/xss script: phpGreetCards download from:http://www.w2b.ru/download/phpGreetCards.zip www.site.com/path/index.php?mode=select&category shell:...
[SECURITY] Fedora 8 Update: roundcubemail-0.2-5.beta.fc8
RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...
[SECURITY] Fedora 10 Update: roundcubemail-0.2-4.beta.fc10
RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...