507 matches found
CVE-2006-0814
response.c in Lighttpd 1.4.10 and possibly previous versions, when run on Windows, allows remote attackers to read arbitrary source code via requests that contain trailing 1 "." dot and 2 space characters, which are ignored by Windows, as demonstrated by PHP files...
CVE-2005-2750
CVE-2005-2750 affects Mac OS X v10.4.2 Software Update. When a user marks all available updates to be ignored, Software Update exits without offering to reset the ignored-updates list, potentially blocking security-relevant updates. Appleās advisory (Mac OS X v10.4.3) fixes this by prompting to r...
baalASPSQL.txt
------------------------------------------------------ Nightmare TeAmZ Advisory 002 ------------------------------------------------------ Date - 10/2005 BaalASP Free Bulletin Board Sql Injection Admin Login AFFECTED PRODUCTS ================= BaalASP Free Bulletin Board...
CVE-2005-0023
gnome-pty-helper in GNOME libzvt2 and libvte4 allows local users to spoof the logon hostname via a modified DISPLAY environment variable. NOTE: the severity of this issue has been disputed...
CVE-2005-0173
squidldapauth in Squid 2.5 and earlier allows remote authenticated users to bypass username-based Access Control Lists ACLs via a username with a space at the beginning or end, which is ignored by the LDAP server...
[Full-Disclosure] [SECURITY] [DSA 605-1] New viewcvs packages fix information leak
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 605-1 [email protected] http://www.debian.org/security/ Martin Schulze December 6th, 2004 http://www.debian.org/security/faq -...
Mac Volumes & Junctions
I recently encountered a problem where, if you mount a partition to a path rather than a drive letter and then create a Macintosh volume for it, the permissions set for that volume will be ignored by Mac clients. This is what I did and you can too to reproduce the problem: 1. Create a generic use...