1511 matches found
Debian DSA-1034-1 : horde2 - several vulnerabilities
Several remote vulnerabilities have been discovered in the Horde web application framework, which may lead to the execution of arbitrary web script code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-1260 Null characters in the URL parameter bypas...
[Full-disclosure] Socket unreachable in GNUnet rev 2780
Luigi Auriemma Application: GNUnet http://www.gnunet.org Versions: = 0.7.0d and revision 2780 Platforms: Windows, nix, BSD, Mac and more Bug: UDP socket unreachable Exploitation: remote Date: 12 May 2006 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug 3 Th...
Buffer overflow
Buffer overflow in the ILASM assembler in the Microsoft .NET 1.0 and 1.1 Framework might allow user-assisted attackers to execute arbitrary code via a .il file that calls a function with a long name...
PEAR LiveUser File Access Vulnerabilities
GulfTech Security Research February 21, 2006 Vendor : Markus Wolff URL : http://pear.php.net/package/LiveUser/ Version : PEAR LiveUser = 0.16.8 Risk : Arbitrary File Access Description: LiveUser is a user authentication and permission management framework that is part of php's PEAR Library...
DSA-979-1 pdfkit.framework - several
Bulletin has no description...
Lyris ListManager Read Message Attachment SQL Injection Exploit
Exploit for unknown platform in category remote exploits =============================================================== Lyris ListManager Read Message Attachment SQL Injection Exploit =============================================================== This file is part of the Metasploit Framework an...
google.pm.txt
This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...
HP-UX FTP Server Preauthentication Directory Listing Exploit (meta)
Exploit for hp-ux platform in category remote exploits =================================================================== HP-UX FTP Server Preauthentication Directory Listing Exploit meta =================================================================== This file is part of the Metasploit...
jawsGlossary.txt
XSS Bug in Jaws Glossary v 0.4 - 0.5.1 latest version STATUS: The vendor has been contacted, fixed in cvs. Jaws is a Framework and Content Management System for building dynamic web sites. It aims to be User Friendly giving ease of use and lots of ways to customize web sites, but at the same time...
MDaemon 8.0.3 IMAPD CRAM-MD5 Authentication Overflow Exploit
Exploit for unknown platform in category remote exploits ============================================================ MDaemon 8.0.3 IMAPD CRAM-MD5 Authentication Overflow Exploit ============================================================ This file is part of the Metasploit Framework and may be...
CVE-2005-2170
CVE-2005-2170 affects the LCF component (lcfd) in IBM Tivoli Management Framework Endpoint. A remote attacker can trigger a denial of service by connecting to LCF and closing the connection without sending data, causing process exit and connection loss. Exploitation details, affected versions, an...