CVE-2007-3719

The process scheduler in the Linux kernel 2.6.16 gives preference to "interactive" processes that perform voluntary sleeps, which allows local users to cause a denial of service CPU consumption, as described in "Secretly Monopolizing the CPU Without Superuser Privileges."...

Debian DSA-1326-1 : fireflier-server - insecure temporary files

Steve Kemp from the Debian Security Audit project discovered that fireflier-server, an interactive firewall rule creation tool, uses temporary files in an unsafe manner which may be exploited to remove arbitrary files from the local system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

Microsoft Step-by-Step Interactive Training bookmark buffer overflow

Added: 05/04/2007 CVE: CVE-2006-3448 BID: 22484 OSVDB: 31883 Background Microsoft Step-by-Step Interactive Training is the engine used by various training programs. Problem A buffer overflow vulnerability in Microsoft Step-by-Step Interactive Training allows command execution when a specially...

Microsoft Step-by-Step Interactive Training bookmark buffer overflow

Added: 05/04/2007 CVE: CVE-2006-3448 BID: 22484 OSVDB: 31883 Background Microsoft Step-by-Step Interactive Training is the engine used by various training programs. Problem A buffer overflow vulnerability in Microsoft Step-by-Step Interactive Training allows command execution when a specially...

Microsoft Step-by-Step Interactive Training bookmark buffer overflow

Added: 05/04/2007 CVE: CVE-2006-3448 BID: 22484 OSVDB: 31883 Background Microsoft Step-by-Step Interactive Training is the engine used by various training programs. Problem A buffer overflow vulnerability in Microsoft Step-by-Step Interactive Training allows command execution when a specially...

Microsoft Step-by-Step Interactive Training bookmark buffer overflow

Added: 05/04/2007 CVE: CVE-2006-3448 BID: 22484 OSVDB: 31883 Background Microsoft Step-by-Step Interactive Training is the engine used by various training programs. Problem A buffer overflow vulnerability in Microsoft Step-by-Step Interactive Training allows command execution when a specially...

Microsoft Step-by-Step Interactive Training Buffer Overflow (MS07-005; CVE-2006-3448)

Step-by-Step Interactive Training is an engine for interactive training titles provided by Microsoft Press and other vendors. By using the Step-by-Step Interactive Training user interface Bookmark link files .CBO,.CBL,.CBM are created. These files allow easier access to a particular topic, and...

Microsoft Step-by-Step Interactive Training contains a buffer overflow

Overview Microsoft Step-by-Step Interactive Training contains a buffer overflow vulnerability. If successfully exploited, this vulnerability may allow an attacker to execute arbitrary code. Description Microsoft Step-by-Step Interactive Training is a training program developed by MIcrosoft. It is...

CVE-2006-3448

Microsoft Step-by-Step Interactive Training contains a buffer overflow vulnerability (CVE-2006-3448) in the bookmark link handling for .CBO, .CBL, or .CBM files. Exploitation requires a user to open a crafted bookmark file, potentially allowing remote code execution on affected Windows systems (W...

MS07-005: Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (923723)

The remote host is running a version of Microsoft Step-by-Step Interactive Training that contains a flaw that could lead to remote code execution. To exploit this flaw, an attacker would need to trick a user on the remote host into opening a malformed file with the affected application. Tenable...

Microsoft Step-by-Step Interactive Training Buffer Overflow Vulnerability

Description Microsoft Step-by-Step Interactive Training is prone to a buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker could exploit this issue by enticing a victim to load a bookmark...

HP LoadRunner Agent Service Detection

An HP LoadRunner Agent is listening on the remote host. This agent enables a LoadRunner Controller to communicate with the LoadRunner Load Generator on the remote host for performance testing. Note that Hewlett-Packard acquired LoadRunner in November 2006 as part of its acquisition of Mercury...

Microsoft Security Bulletin MS07-005

Microsoft Security Bulletin MS07-005 Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution 923723 Published: February 13, 2007 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Windows and have Step-by-Step Interactive Training installe...

Sun Solaris Telnet Remote Authentication Bypass Vulnerability

Description Sun Solaris 10 is prone to a vulnerability that allows remote attackers to bypass authentication. Successfully exploiting this issue allows remote attackers to gain remote access to vulnerable computers. If the targeted computer is configured to allow non-console logins for superusers...

Cross site scripting

Cross-site scripting XSS vulnerability in admin.php in Interactive-Scripts.Com PHP Membership Manager 1.5 allows remote attackers to inject arbitrary web script or HTML via the p parameter...

CVE-2007-0567

The CVE-2007-0567 issue is an XSS vulnerability in Interactive-Scripts.Com PHP Membership Manager 1.5, exploitable via the _p parameter in admin.php. The root cause is unsanitized input leading to injection of arbitrary script/HTML. CVSS v2 base score is 6.8 (MEDIUM) with partial impacts on confi...

PHP Membership Manager Cross-Site Scripting Vulnerability

PHP Membership Manager Cross-Site Scripting Vulnerability PHP Membership Manager is a browser based tool which allows a site owner to easily manage an unlimited number of username / password accounts and groups which access secure, protected areas of a web site which require logging in before...

PHP Command, Double Reverse TCP Connection (via Perl)

Creates an interactive shell via perl This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = :dynamic include Msf::Payload::Single include Msf::Payload::Php include...

: gnupg2 < 2.0.1 buffer overflow

Heap-based buffer overflow in the askoutfilename function in openfile.c for GnuPG gpg 1.4 and 2.0, when running interactively, might allow attackers to execute arbitrary code via messages with "C-escape" expansions, which cause the makeprintablestring function to return a longer string than...

USN-389-1: GnuPG vulnerability

A buffer overflow was discovered in GnuPG. By tricking a user into running gpg interactively on a specially crafted message, an attacker could execute arbitrary code with the user's privileges. This vulnerability is not exposed when running gpg in batch mode...