WebCreator <= 0.2.6-rc3 (moddir) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ==================================================================== WebCreator = 0.2.6-rc3 moddir Remote File Inclusion Vulnerability ==================================================================== \ /\ \ / | \ \ | / \ // / | \ | \...

MySQL Commander 2.7 - &#039;home&#039; Remote File Inclusion

\ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV73$2007 ----------------------------------------------------------------------------------------- ECHOADV73$2007 MySQL Commander = 2.7 home Remote File Inclusion Vulnerability...

CVE-2007-1346

Unspecified vulnerability in ipmitool for Sun Fire X2100M2 and X2200M2 allows local users to gain privileges and reset or turn off the server...

Code injection

Unspecified vulnerability in ipmitool for Sun Fire X2100M2 and X2200M2 allows local users to gain privileges and reset or turn off the server...

CVE-2007-1346

Unspecified vulnerability in ipmitool for Sun Fire X2100M2 and X2200M2 allows local users to gain privileges and reset or turn off the server...

WEBO (Web ORGanizer) 1.0 - &#039;baseDir&#039; Remote File Inclusion

\ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV67$2007 ----------------------------------------------------------------------------------------- ECHOADV67$2007 WEBO Web Organizer = 1.0 baseDir Remote File Inclusion Vulnerability...

DEBIAN-CVE-2007-1218

Off-by-one buffer overflow in the parseelements function in the 802.11 printer code print-80211.c for tcpdump 3.9.5 and earlier allows remote attackers to cause a denial of service crash via a crafted 802.11 frame. NOTE: this was originally referred to as heap-based, but it might be stack-based...

SendStudio 2004.14 - &#039;ROOTDIR&#039; Remote File Inclusion

\ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV66$2007 ----------------------------------------------------------------------------------------- ECHOADV66$2007 SendStudio = 2004.14 Remote File Inclusion Vulnerability...

SUSE-SA:2006:043: apache,apache2

The remote host is missing the patch for the advisory SUSE-SA:2006:043 apache,apache2. The following security problem was fixed in the Apache and Apache 2 web servers: modrewrite: Fix an off-by-one security problem in the ldap scheme handling. For some RewriteRules this could lead to a pointer...

CVE-2007-0911

Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...

CVE-2007-0911

Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...

Code injection

Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...

EUVD-2007-0905

Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...

CVE-2007-0911

Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...

PHP str_ireplace DoS

$Data = strireplace"n", "br", $Data; can cause PHP engine to crash Because of off-by-one overflow...

Apple Airport Extreme fails to properly process 802.11 frames

Overview A vulnerability exists in the Apple AirPort Extreme wireless driver that may allow an attacker to crash a vulnerable system. Description The Apple AirPort Extreme adapter is an 802.11g compatible wireless adapter used in Apple OS X laptops and desktops. A flaw exists in the way AirPort...

Fedora Core 5 : dovecot-1.0-0.beta8.3.fc5 (2006-1504)

Thu Dec 21 2006 Tomas Janousek - 1.0-0.beta8.3.fc5 - fixed default paths in the example mkcert.sh to match configuration defaults fixes 183151 - fixed off by one 216508, CVE-2006-5973 - Thu Jun 8 2006 Petr Rockai - 1.0-0.beta8.2.fc5 - bring FC-5 branch up to date with the rawhide one bugfixes...

Fedora Core 5 : texinfo-4.8-9.2.fc5.2 (2006-1202)

Sun Nov 5 2006 Miloslav Trmac - 4.8-9.2.fc5.2 - Remove off-line sorting from texindex fixes CVE-2006-4810 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much...

AIOCP SQL Injection Vulnerability

i Product Name: AIOCP - All In One Control Panel i Vulnerable Versions: = 1.3.009 i Bug found by: Coloss i Contact: [email protected] i Date: 9.1.2007 i Spec: Parameter 'did' is not checked before it's used in a SQL Query so you are able to inject some evil SQL code Example shows how to retrieve...

CentOS 4 : mod_auth_kerb (CESA-2006:0746)

Updated modauthkerb packages that fix a security flaw and a bug in multiple realm handling are now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. modauthkerb is module for the Apache HTTP Server designed to...