PT-2026-45044

Summary When debug logging is enabled, Session::setCookie logs full cookie values and Session::start logs the current session ID. In a real Admidio deployment this includes both the active session cookie and the persistent auto-login cookie. Anyone with access to the log sink can recover live...

EUVD-2005-0361

Malware in sbrugna...

CVE-2005-0360

The Microsoft Log Sink Class ActiveX control in pkmcore.dll is marked as "safe for scripting" for Internet Explorer, which allows remote attackers to create or append to arbitrary files...

Microsoft Log Sink Class ActiveX Control Arbitrary File Creation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12646/info Microsoft Log Sink Class ActiveX control can allow remote attackers to create arbitrary files on an affected computer. A remote attacker can exploit this issue by crafting a malicious Web site that triggers thi...

CVE-2005-0360

The Microsoft Log Sink Class ActiveX control in pkmcore.dll is marked as "safe for scripting" for Internet Explorer, which allows remote attackers to create or append to arbitrary files...

CVE-2005-0360

The Microsoft Log Sink Class ActiveX control in pkmcore.dll is marked as "safe for scripting" for Internet Explorer, which allows remote attackers to create or append to arbitrary files...

CVE-2005-0360

The CVE-2005-0360 issue involves the Microsoft Log Sink Class ActiveX control in pkmcore.dll, which is marked as unsafe for scripting yet is labeled safe for scripting. The ActiveX control can create or append to arbitrary files on the local file system when exploited via Internet Explorer, enabl...

Microsoft Log Sink Class - ActiveX Control Arbitrary File Creation

Microsoft Log Sink Class - ActiveX Control Arbitrary File Creation source: https://www.securityfocus.com/bid/12646/info Microsoft Log Sink Class ActiveX control can allow remote attackers to create arbitrary files on an affected computer. A remote attacker can exploit this issue by crafting a...