Lucene search
K

7474 matches found

seebug.org
seebug.org
added 2007/12/24 12:0 a.m.12 views

Aeries Browser Interface 'LostPwd.asp' SQL注入漏洞

BUGTRAQ ID: 26962 CNCAN ID:CNCAN-2007122401 Aeries Browser Interface是一款基于ASP的WEB应用程序。 Aeries Browser Interface不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞进行SQL注入攻击,可获得敏感信息或操作数据库。 问题是由于'LostPwd.asp'脚本对用户提交的WEB参数处理缺少充分过滤,提交恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息或操作数据库。 Eagle Software AERIES Browser Interface 3.7.9.17...

6.9AI score
Exploits0
NVD
NVD
added 2007/12/19 9:46 p.m.20 views

CVE-2007-5860

Unspecified vulnerability in Spin Tracer in Apple Mac OS X 10.5.1 allows local users to execute arbitrary code via unspecified output files, involving an "insecure file operation."...

7.2CVSS7AI score0.00402EPSS
Exploits1References8
Prion
Prion
added 2007/12/19 9:46 p.m.21 views

Design/Logic Flaw

Unspecified vulnerability in Spin Tracer in Apple Mac OS X 10.5.1 allows local users to execute arbitrary code via unspecified output files, involving an "insecure file operation."...

7.2CVSS7AI score0.00402EPSS
Exploits1References8Affected Software2
CVE
CVE
added 2007/12/19 9:0 p.m.54 views

CVE-2007-5860

CVE-2007-5860 affects Apple Mac OS X 10.5.1 (Spin Tracer). The vulnerability is described as an unspecified local condition that allows an attacker with local access to execute arbitrary code via insecure file operations on output files. This is confirmed by multiple sources in the connected set,...

7.2CVSS8.7AI score0.00402EPSS
Exploits1References8Affected Software2
Cvelist
Cvelist
added 2007/12/19 9:0 p.m.24 views

CVE-2007-5860

Unspecified vulnerability in Spin Tracer in Apple Mac OS X 10.5.1 allows local users to execute arbitrary code via unspecified output files, involving an "insecure file operation."...

8.7AI score0.00402EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2007/12/18 4:30 p.m.6 views

mysql DoS in the InnoDB Engine

The convertsearchmodetoinnobase function in hainnodb.cc in the InnoDB engine in MySQL 5.1.23-BK and earlier allows remote authenticated users to cause a denial of service database crash via a certain CONTAINS operation on an indexed column, which triggers an assertion error...

4CVSS5.8AI score0.11351EPSS
Exploits0References4
OSV
OSV
added 2007/12/17 6:46 p.m.2 views

DEBIAN-CVE-2007-6389

The notify feature in GNOME screensaver gnome-screensaver 2.20.0 might allow local users to read the clipboard contents and X selection data for a locked session by using ctrl-V...

2.1CVSS6.5AI score0.00372EPSS
Exploits2References1
Prion
Prion
added 2007/11/13 8:46 p.m.11 views

Session fixation

Pioneers formerly gnocatan before 0.11.3 allows remote attackers to cause a denial of service crash by triggering a delete operation while the Session object is still being used, as demonstrated by causing a "Broken pipe" error...

7.8CVSS6.6AI score0.02022EPSS
Exploits0References8Affected Software1
seebug.org
seebug.org
added 2007/11/01 12:0 a.m.15 views

miniBB BB_FUNC_SEARCH.PHP SQL注入漏洞

miniBB是一款基于PHP的WEB应用程序。 miniBB不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞进行SQL攻击,获得敏感信息或操作数据库。 问题是由于'BBFUNCSEARCH.PHP'脚本对用户提交的'table'参数缺少过滤,提交恶意SQL查询作为参数数据,可更改原来的SQL逻辑,攻击者可以获得敏感信息或操作数据库。 MiniBB MiniBB 2.1 - Apache Software Foundation Apache 1.3.24 - Apache Software Foundation Apache 1.3.23 - Apache Software...

7.1AI score
Exploits0
myhack58
myhack58
added 2007/10/12 12:0 a.m.16 views

Bbsxp 2 0 0 7[previous version don't know]an interesting vulnerability-vulnerability warning-the black bar safety net

| cpmpact. asp % option explicit Const JET3X = 4 if ""&Request"sessionid"&""""&session. sessionid&"" then error"validation code error" Dim dbpath,boolIs97 dbpath = Request"dbpath" boolIs97 = Request"boolIs97" If dbpath "" Then dbpath = server. mappathdbpath response. writeCompactDBdbpath,boolIs97...

7.3AI score
Exploits0
Prion
Prion
added 2007/10/01 5:17 a.m.16 views

Buffer overflow

Buffer overflow in the GDI engine in Windows Live Messenger, as used for Windows MSN Live 8.1, allows user-assisted remote attackers to cause a denial of service application crash or system crash and possibly execute arbitrary code by placing a malformed file in a new folder under the Sharing...

4.3CVSS8.9AI score0.16503EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2007/10/01 12:0 a.m.19 views

CVE-2007-5144

Buffer overflow in the GDI engine in Windows Live Messenger, as used for Windows MSN Live 8.1, allows user-assisted remote attackers to cause a denial of service application crash or system crash and possibly execute arbitrary code by placing a malformed file in a new folder under the Sharing...

8.1AI score0.16503EPSS
Exploits0References3
Fedora
Fedora
added 2007/08/27 8:51 p.m.78 views

[SECURITY] Fedora 7 Update: sylpheed-2.3.1-5

This program is an X based fast email client which has features like: o user-friendly and intuitive interface o integrated NetNews client partially implemented o ability of keyboard-only operation o Mew/Wanderlust-like key bind o multipart MIME o unlimited multiple account handling o message...

6.8CVSS6.6AI score0.03167EPSS
Exploits1
securityvulns
securityvulns
added 2007/08/15 12:0 a.m.52 views

Microsoft Virtual PC / Virtual Server buffer overflow

Heap based buffer overflow allows guest operation system user with administrative privileges to execute code on host operation system or another guest operation system...

9.3CVSS4.1AI score0.12127EPSS
Exploits1References1Affected Software3
Prion
Prion
added 2007/08/13 9:17 p.m.20 views

Design/Logic Flaw

The xfersecondarypool function in drivers/char/random.c in the Linux kernel 2.4 before 2.4.35 performs reseed operations on only the first few bytes of a buffer, which might make it easier for attackers to predict the output of the random number generator, related to incorrect use of the sizeof...

6.8CVSS6.5AI score0.01729EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2007/07/27 10:30 p.m.13 views

Code injection

Guidance Software EnCase allows user-assisted attackers to trigger a buffer over-read and application crash via a malformed NTFS filesystem containing a modified FILE record with a certain large offset. NOTE: the vendor disputes the significance of this issue, asserting that relevant attackers...

4.3CVSS6.8AI score0.01244EPSS
Exploits0References7
Atlassian
Atlassian
added 2007/07/11 12:37 a.m.18 views

Security issue: user can copy page with only view permissions

I have a user who only has view permissions to a space. Logging on as that user, I went to the Info tab of a page. The Copy operation appeared, and I was able click the link, edit the copied page, and save it. This must be a security hole?...

0.5AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2007/07/11 12:37 a.m.21 views

Security issue: user can copy page with only view permissions

I have a user who only has view permissions to a space. Logging on as that user, I went to the Info tab of a page. The Copy operation appeared, and I was able click the link, edit the copied page, and save it. This must be a security hole?...

0.5AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2007/07/11 12:37 a.m.20 views

Security issue: user can copy page with only view permissions

I have a user who only has view permissions to a space. Logging on as that user, I went to the Info tab of a page. The Copy operation appeared, and I was able click the link, edit the copied page, and save it. This must be a security hole?...

0.5AI score
Exploits0
Prion
Prion
added 2007/07/10 12:30 a.m.22 views

Cross site scripting

Adobe Integrated Runtime AIR, aka Apollo allows context-dependent attackers to modify arbitrary files within an executing .air file compiled AIR application and perform cross-site scripting XSS attacks, as demonstrated by an application that modifies an HTML file inside itself via JavaScript that...

4.3CVSS5.8AI score0.02562EPSS
Exploits0References4
Rows per page
Query Builder