4488 matches found
upb.admin.txt
product: Ultimate PHP Board UPB version: Public Beta 1.0b !!FIXED vendor: http://www.webrc.ca/php/upb.php summary: upb allow to any user have access levels 3 to have admin premissions exploit: yes Fix: yes Exploited by Hipik memmbers of www.hackeri.org Bosnians Security Portal email:[email protected]...
CVE-2002-0554
webdriver in IBM Informix Web DataBlade 4.12 allows remote attackers to bypass user access levels or read arbitrary files via a SQL injection attack in an HTTP request...
Format string bug in awhttpd (Re: [AP] awhttpd v2.2 local DoS)
Hello methodic, While testing a buffer overflow in you patch tpbuf is only 210 bytes, but you're lucky - getreqsi is only 100 bytes long : I've found classical exploitable syslog format string in this extremely secure product. Patch? - if priority=LOGLEVEL syslogtplev,buf; + if priority=LOGLEVEL...
Exploiting Kernel Buffer Overflows FreeBSD Style
-----BEGIN PGP SIGNED MESSAGE----- Exploiting Kernel Buffer Overflows FreeBSD Style: Defeating Security Levels and Breaking Out of Jail2 Esa Etelavuori December 28, 2000 1. Introduction This is a detailed case study discussing the exploitation of the FreeBSD kernel process filesystem buffer...
ISC BIND 8.2.2-P6 vulnerable to DoS via compressed zone transfer, aka the "zxfr bug"
Overview There is a denial-of-service vulnerability in several versions of the Internet Software Consortium's ISC BIND software. This vulnerability is referred to by the ISC as the "zxfr bug." It affects ISC BIND version 8.2.2, patch levels 1 through 6. Description Using this vulnerability,...
Microsoft Windows 9598NT 4.0 - Help File Backdoor
Microsoft Windows 9598NT 4.0 - Help File Backdoor source: https://www.securityfocus.com/bid/868/info The help files for the Windows Help system .cnt, .hlp can be edited so that they run an arbitrary executable when selected by a user. The executable will run at the privelege level of the user. Th...
SDI.exploit4.proftpd.txt
From: Bugtraq List [email protected] on behalf of Thiago/c0nd0r [email protected] Sent: Wednesday, September 15, 1999 12:31 PM To: [email protected] Subject: SDI anonymous remote exploit for proftpd Hello, I've seen some discussion about the possibility of exploit the newest proft...
lyris.txt
Date: Sun, 20 Sep 1998 01:40:16 -0400 From: Jimmy Lee Alderson Subject: Vulnerability in Lyris Listserver The following is associated with a post to NTbugtraq. The original post vaguely describes a security problem inherent in a popular server. I recently found this problem on my own, and was goi...