22 matches found
EUVD-2006-3996
Malware in sbrugna...
EUVD-2006-3369
Malware in sbrugna...
The Hobbit: Kingdoms - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities
HackApp vulnerability scanner discovered that application The Hobbit: Kingdoms published at the 'play' market has multiple vulnerabilities...
The Hobbit Live Wallpaper - WebView JavaScript enabled, WebView files access vulnerabilities
HackApp vulnerability scanner discovered that application The Hobbit Live Wallpaper published at the 'play' market has multiple vulnerabilities...
Hobbit helmsman Jackson trap in $190K credit card scam !
Lord of the Rings Director Peter Jackson was the ambition of a US$190,000 £120,000 acclaim agenda artifice that approved to bond out a disturbing business. The recently-knighted Hobbit helmsman acclimated his American Express agenda to shop for items from the Michigan Toy Soldier Company, which...
Hobbit Monitor Daemon Detection
The remote host is running the server component of Hobbit Monitor, an open source application and network monitoring tool. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid22180; scriptversion"1.11";...
Hobbit Monitor config Method Traversal Arbitrary File Access
The version of the Hobbit Monitor daemon installed on the remote host does not properly filter the argument to the 'config' command of directory traversal sequences. An unauthenticated attacker can leverage this flaw to retrieve arbitrary files from the affected host subject to the privileges of...
CVE-2006-4003
The config method in Henrik Storner Hobbit monitor before 4.1.2p2 permits access to files outside of the intended configuration directory, which allows remote attackers to obtain sensitive information via requests to the hobbitd daemon on port 1984/tcp...
CVE-2006-4003
The CVE-2006-4003 issue affects Henrik Storner Hobbit Monitor (hobbitd) prior to version 4.1.2p2. The vulnerability arises from improper filtering of the argument to the config command, enabling a directory-traversal flaw that allows an unauthenticated attacker to read arbitrary files outside the...
CVE-2006-4003
The config method in Henrik Storner Hobbit monitor before 4.1.2p2 permits access to files outside of the intended configuration directory, which allows remote attackers to obtain sensitive information via requests to the hobbitd daemon on port 1984/tcp...
Hobbit Monitor directory traversal
TCP/1984 Hobbit network daemon directory traversal...
Hobbit monitor security bugfix release - 4.1.2p2
Version 4.1.2p2 of Hobbit has just been uploaded to SourceForge, and is available at http://sourceforge.net/project/showfiles.php?groupid=128058&packageid=140220&releaseid=436594 This release fixes a security bug reported by Jason Kruse earlier today: File access via the Hobbit "config" method...
Hobbit Monitor < 4.1.2p2 config Command Traversal Arbitrary File Access
Binary data 3699.prm...
CVE-2006-3373
Unspecified vulnerability in the client/bin/logfetch script in Hobbit 4.2-beta allows local users to read arbitrary files, related to logfetch running as setuid root...
CVE-2006-3373
Unspecified vulnerability in the client/bin/logfetch script in Hobbit 4.2-beta allows local users to read arbitrary files, related to logfetch running as setuid root...
CVE-2006-3373
CVE-2006-3373 affects Hobbit 4.2-beta: the client/bin/logfetch script is vulnerable, enabling local users to read arbitrary files due to logfetch running as setuid root. Root cause is unspecified in the provided documents; impact is limited to partial confidentiality disclosure. No remediation de...
Hobbit monitor: Security issue with Hobbit 4.2-beta client
I was just notified by a Hobbit user that the current beta client has a security problem in the client "logfetch" utility, when installed as suid-root which is the default if "make install" is executed as root. Impact ------ The effect of this is that any user who is able to login and create file...
Hobbit client unauthorized files access
logfecth suid utiliy allows local files access...
Hobbit Monitor < 4.1.0 hobbitd Malformed Message Remote Overflow
The remote host is running Hobbit Monitor, an open source tool for monitoring servers, applications, and networks. The installed version of Hobbit contains a flaw that could lead to the Hobbit daemon, 'hobbitd', crashing when it tries to process certain types of messages. It may also be possible ...
Hobbit Monitor DoS
Denial of Service during network message parsing...