CVE-2006-2024

Multiple vulnerabilities in libtiff before 3.8.1 allow context-dependent attackers to cause a denial of service via a TIFF image that triggers errors in 1 the TIFFFetchAnyArray function in a tifdirread.c; 2 certain "codec cleanup methods" in b tiflzw.c, c tifpixarlog.c, and d tifzip.c; 3 and...

CVE-2006-2024

Multiple vulnerabilities in libtiff before 3.8.1 allow context-dependent attackers to cause a denial of service via a TIFF image that triggers errors in 1 the TIFFFetchAnyArray function in a tifdirread.c; 2 certain "codec cleanup methods" in b tiflzw.c, c tifpixarlog.c, and d tifzip.c; 3 and...

CVE-2006-2024

Multiple vulnerabilities in libtiff before 3.8.1 allow context-dependent attackers to cause a denial of service via a TIFF image that triggers errors in 1 the TIFFFetchAnyArray function in a tifdirread.c; 2 certain "codec cleanup methods" in b tiflzw.c, c tifpixarlog.c, and d tifzip.c; 3 and...

Plone 2.x - MembershipTool Access Control Bypass

Plone 2.x - MembershipTool Access Control Bypass source: https://www.securityfocus.com/bid/17484/info Plone is susceptible to a remote access-control bypass vulnerability. This issue is due to the application's failure to properly enforce privileges to various MembershipTool methods. This issue...

CVE-2006-1711

Plone 2.0.5, 2.1.2, and 2.5-beta1 does not restrict access to the 1 changeMemberPortrait, 2 deletePersonalPortrait, and 3 testCurrentPassword methods, which allows remote attackers to modify portraits...

Construct a special file name to bypass multiple anti-virus engine-vulnerability warning-the black bar safety net

Category: design error Threat level: medium BUGTRAQ ID: 1 5 4 2 3 Affected by the anti-virus engine: Kaspersky Antivirus Symantec AntiVirus F-Prot Antivirus ClamWin Antivirus Avast Antivirus RAV AntiVirus Microsoft AntiSpyware Tested version: Symantec AntiVirus Corporate 8.0 Kaspersky Antivirus...

Mandrake Linux Security Advisory : openssh (MDKSA-2006:034)

A flaw was discovered in the scp local-to-local copy implementation where filenames that contain shell metacharacters or spaces are expanded twice, which could lead to the execution of arbitrary commands if a local user could be tricked into a scp'ing a specially crafted filename. The provided...

Memory corruption

The function allocation code jsNewFunction in jsfun.c in Firefox 1.5 allows attackers to cause a denial of service memory corruption and possibly execute arbitrary code via user-defined methods that trigger garbage collection in a way that operates on freed objects...

CVE-2006-0293

The function allocation code jsNewFunction in jsfun.c in Firefox 1.5 allows attackers to cause a denial of service memory corruption and possibly execute arbitrary code via user-defined methods that trigger garbage collection in a way that operates on freed objects...

CVE-2006-0293

The function allocation code jsNewFunction in jsfun.c in Firefox 1.5 allows attackers to cause a denial of service memory corruption and possibly execute arbitrary code via user-defined methods that trigger garbage collection in a way that operates on freed objects...

Programming cheats: the C language efficient four trick-vulnerability warning-the black bar safety net

Writing efficient and simple C language code, many software engineers are pursuing. This article is for the programming work of some of the experience and experience to do the relevant elaboration. The first trick: to space for time Computer program the greatest paradox in space and time the...

From the background to give the webshell tips great summary-vulnerability warning-the black bar safety net

Foreword Moving webonexploit, I believe we scored a lot of chickens. Can say ismoving weblet upfile. asp Upload file filter is not strict. vulnerabilitysho ran the world, Now thisvulnerabilityhas been substantially more difficult to meet, do not rule out some small sites still exist for...

DMANews 0.9 - Multiple SQL Injections

source: https://www.securityfocus.com/bid/15628/info DMANews is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of t...

Specially crafted Java applets can crash Opera

Java code using LiveConnect methods to remove a property of aJavaScript object may in some cases use null pointers that canmake Opera crash. This crash is not exploitable and such code israre on the web...

CVE-2005-3757

The Saxon XSLT parser in Google Mini Search Appliance, and possibly Google Search Appliance, allows remote attackers to obtain sensitive information and execute arbitrary code via dangerous Java class methods in select attribute of xsl:value-of tags in XSLT style sheets, such as 1 system-property...

CVE-2005-3757

The CVE-2005-3757 issue affects the Saxon XSLT parser used by Google Mini Search Appliance (and possibly Google Search Appliance). The vulnerability arises from dangerous Java methods (system-property, sys:getProperty, run:exec) in the select attribute of xsl:value-of in XSLT style sheets, enabli...

CVE-2005-3757

Removed by vendor...

Google Search Appliance proxystylesheet XSLT Java Code Execution

Exploit for hardware platform in category remote exploits ================================================================ Google Search Appliance proxystylesheet XSLT Java Code Execution ================================================================ This file is part of the Metasploit Framewor...

google.pm.txt

This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...

HTTP Debugging Methods (TRACE/TRACK) Enabled

The remote web server supports the TRACE and/or TRACK methods. TRACE and TRACK are HTTP methods which are used to debug web server connections. SPDX-FileCopyrightText: 2003 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...