CVE-2010-0832

pammotd aka the MOTD module in libpam-modules before 1.1.0-2ubuntu1.1 in PAM on Ubuntu 9.10 and libpam-modules before 1.1.1-2ubuntu5 in PAM on Ubuntu 10.04 LTS allows local users to change the ownership of arbitrary files via a symlink attack on .cache in a user's home directory, related to "user...

CVE-2010-0832

pammotd aka the MOTD module in libpam-modules before 1.1.0-2ubuntu1.1 in PAM on Ubuntu 9.10 and libpam-modules before 1.1.1-2ubuntu5 in PAM on Ubuntu 10.04 LTS allows local users to change the ownership of arbitrary files via a symlink attack on .cache in a user's home directory, related to "user...

CVE-2010-0832

CVE-2010-0832 affects the PAM MOTD module (pam_motd) in libpam-modules before 1.1.0-2ubuntu1.1 on Ubuntu 9.10 and before 1.1.1-2ubuntu5 on Ubuntu 10.04 LTS. A local attacker can exploit a symlink attack on a user’s .cache (in conjunction with motd.legal-notice) to change ownership of arbitrary fi...

Ubuntu Update for pam vulnerability USN-959-1

Ubuntu Update for Linux kernel vulnerabilities USN-959-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9591.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for pam vulnerability USN-959-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.n...

Fedora Update for python-mako FEDORA-2010-10544

Check for the Version of python-mako OpenVAS Vulnerability Test Fedora Update for python-mako FEDORA-2010-10544 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

CVE-2010-0832

pammotd aka the MOTD module in libpam-modules before 1.1.0-2ubuntu1.1 in PAM on Ubuntu 9.10 and libpam-modules before 1.1.1-2ubuntu5 in PAM on Ubuntu 10.04 LTS allows local users to change the ownership of arbitrary files via a symlink attack on .cache in a user's home directory, related to "user...

[SECURITY] Fedora 12 Update: python-2.6.2-8.fc12

Python is an interpreted, interactive, object-oriented programming language often compared to Tcl, Perl, Scheme or Java. Python includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as t...

Sandbox 2.0.2 - Local File Inclusion

Sandbox 2.0.2 - Local File Inclusion : Tested on: Linux os : : Greetz to : pr.al7rbi : so busy : evil-ksa : Dr.dakota : v4-team.com : ---------------------------------------------------------------------------- + file:index.php on line 75 + Code: +...

Cross site scripting

Cross-site scripting XSS vulnerability in class/tools.class.php in AneCMS Blog 1.3 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the comment variable to modules/blog/index.php...

Drupal Sets Security Rules on Modules

Webmasters running unfinished modules for Drupal do so at their own risk after the open-source CMS updated its guidelines on fixing security vulnerabilities. Read the full article. The Register...

Miniweb 2.0 Business Portal and Social Networking Platform - SQL Injection

Author: L0rd CrusAd3r aka VSN [email protected] Exploit Title:Miniweb 2.0 Business Portal and Social Networking Platform SQL Injection Vulnerability Vendor url:http://www.miniweb2.com/ Version:2.0 Price:250$ Published: 2010-06-10 Greetz to:Sid3^effects, MaYur, M4n0j, Dark Blue,...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Open Education System OES 0.1 beta allow remote attackers to execute arbitrary PHP code via a URL in the CONFINCLUDEPATH parameter to 1 forum/admin.php and 2 plotgraph/index.php in admin/modules/modules/, and 3 adminuser/modadmuser.php and 4...

PostgreSQL: PL/Tcl Intended restriction bypass

The PL/Tcl implementation in PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 loads Tcl code from the pltclmodules table regardless of the table's ownership and permissions, which allows remo...

PostgreSQL: PL/Tcl Intended restriction bypass

The PL/Tcl implementation in PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 loads Tcl code from the pltclmodules table regardless of the table's ownership and permissions, which allows remo...

PostgreSQL: PL/Tcl Intended restriction bypass

The PL/Tcl implementation in PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 loads Tcl code from the pltclmodules table regardless of the table's ownership and permissions, which allows remo...

RHEL 5 : pam_krb5 (RHSA-2010:0258)

Updated pamkrb5 packages that fix one security issue and various bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

RHEL 4 : thunderbird (RHSA-2010:0154)

The remote Redhat Enterprise Linux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2010:0154 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed HTML mail content. An...

Find and list USB-Storage Modules, list pluged USB-Storage Devices.

This plugin uses ssh to find and list USB-Storage Modules, list pluged USB-Storage Devices.. OpenVAS Vulnerability Test $Id: GSHBSSHUSBstorage.nasl 7061 2017-09-05 11:50:40Z teissa $ Find and list USB-Storage Modules, list pluged USB-Storage Devices. Authors: Thomas Rotter Copyright: Copyright c...

Find and list USB-Storage Modules, list plugged USB-Storage Devices.

This plugin uses SSH to find and list USB-Storage Modules, list plugged USB-Storage Devices. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Puntal 2.1.0 - Remote File Inclusion

==================================================== Puntal 2.1.0 Remote File Inclusion Vulnerability ==================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ ...