2855 matches found
DEBIAN-CVE-2006-3376
Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple products including 1 wv, 2 abiword, 3 freetype, 4 gimp, 5 libgsf, and 6 imagemagick allows remote attackers to execute arbitrary code via the MaxRecordSize header field in a WMF file...
Sql injection
SQL injection vulnerability in cosmicshop/search.php in CosmicShoppingCart allows remote attackers to execute arbitrary SQL commands via the max parameter...
DSA-1021-1 netpbm-free - insecure program execution
Bulletin has no description...
Information about the scan
This script displays, for each tested host, information about the scan itself: - The version of the VT feed - The type of VT feed Direct, Registered or GPL - The version of the Scanner Engine - The port scanners used - The port range scanned - The date of the scan - The duration of the scan - The...
CVE-2005-4518
Mantis before 0.19.4 allows remote attackers to bypass the file upload size restriction by modifying the maxfilesize parameter to 1 bugfileadd.php, 2 bugreport.php, 3 bugreportadvancedpage.php, and 4 projdocaddpage.php...
rssh -- privilege escalation vulnerability
Pizzashack reports: Max Vozeler has reported a problem whereby rssh can allow users who have shell access to systems where rssh is installed and rsshchroothelper is installed SUID to gain root access to the system, due to the ability to chroot to arbitrary locations. There are a lot of potentiall...
CVE-2002-2148
The CVE covers Lucent Ascend devices: MAX Router 5.0 and earlier, Pipeline Router 6.0.2 and earlier, and DSLTerminator. Affected component/behavior is a UDP port 9 discard handling that causes the device to leak sensitive interface details (hostname, MAC, IP) in the response when an attacker send...
CuteNews <= 1.4.1 (shell inject) Remote Command Execution Exploit
Exploit for unknown platform in category web applications ================================================================= CuteNews CuteNews 1.4.1 re...
PHP-Nuke 7.8 - SQL Injection / Remote Command Execution
?php 20.05 23/10/2005 ---phpnuke78xpl.php PHPNuke 7.8 with all security fixes/patches "Downloads","WebLinks" & "YourAccount" modules SQL Injection / remote commands execution exploit yet not tested 7.9, but OK... by rgod site: http://rgod.altervista.org make these changes in php.ini if you have...
Cyphor 0.19 - Board Takeover (SQL Injection)
SQL Injection:" /str0ke --- cyphor019xpl.php 7.36 08/10/2005 Cyphor 0.19 possibly prior versions SQL injection / board takeover by rgod site: http://rgod.altervista.org make these changes in php.ini if you have troubles to launch this script: allowcalltimepassreference = on registerglobals = on...
[SECURITYREASON.COM] Multiple vulnerabilities in PostNuke 0.760-RC4b=>x cXIb8O3.15
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Multiple vulnerabilities in PostNuke 0.760-RC4b=x cXIb8O3.15 Author: Maksymilian Arciemowicz cXIb8O3 Date: 12.6.2005 from SECURITYREASON.COM - --- 0.Description --- PostNuke: The Phoenix Release 0.750 PostNuke is an open source, open developement...
[SA16183] pstotext Arbitrary Postscript Code Execution Vulnerability
---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...
CVE-2005-0497
The CVE-2005-0497 issue affects ADP Elite System Max 9000. It lets remote authenticated users gain privileges by uploading a .profile that sets the ADPROOT environment variable to the root directory, indicating a local-privilege-escalation flaw due to improper handling of user-supplied profiles. ...
Debian DSA-685-1 : emacs21 - format string
Max Vozeler discovered several format string vulnerabilities in the movemail utility of Emacs, the well-known editor. Via connecting to a malicious POP server an attacker can execute arbitrary code under the privileges of group mail. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
security flaw
The binfmtelf loader binfmtelf.c in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, may create an interpreter name string that is not NULL terminated, which could cause strings longer than PATHMAX to be used, leading to buffer overflows that allow local users to cause a denial of service...
DEBIAN-CVE-2004-0417
Integer overflow in the "Max-dotdot" CVS protocol command servemaxdotdot for CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to cause a server crash, which could cause temporary data to remain undeleted and consume disk space...
CVE-2004-0417
CVS-2004-0417 involves an Integer overflow in the Max-dotdot command (serve_max_dotdot) affecting CVS 1.12.x (up to 1.12.8) and 1.11.x (up to 1.11.16). The issue can let remote attackers crash the CVS server, potentially leaving undeleted data and consuming disk space (DoS). Publicly available fi...
security flaw
Integer overflow in the "Max-dotdot" CVS protocol command servemaxdotdot for CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to cause a server crash, which could cause temporary data to remain undeleted and consume disk space...
Critical Vulnerabilities In Max Web Portal
Multiple Vulnerabilities In Max Web Portal ------------------------------------------ Discovery Date: 05/2003 Versions Vuln : All? / 1.30 Author's URL : http://www.maxwebportal.com http://www.maxcanada.ca Notify Status : Patch Available / Upgrade Product Description...
Max Web Portal 1.30 - Multiple Vulnerabilities
Max Web Portal 1.30 - Multiple Vulnerabilities Max Web Portal Multiple Vulnerabilities Vendor: Max Web Portal Product: Max Web Portal Version: alertdocument.cookie Remember this vuln as I will later explain how it can be used to aide an attacker to compromise user and admin accounts. Hidden Form...