ClamAV: Multiple vulnerabilities

Background Clam AntiVirus is an open source GPL anti-virus toolkit for UNIX, designed especially for e-mail scanning on mail gateways. Description Nikolaos Rangos discovered a vulnerability in ClamAV which exists because the recipient address extracted from email messages is not properly sanitize...

ClamAV milter popen command injection

Added: 09/06/2007 CVE: CVE-2007-4560 BID: 25439 OSVDB: 36909 Background ClamAV is an open-source anti-virus toolkit. clamav-milter is a derivative of ClamAV for e-mail servers running Sendmail. Problem An insecure call to the popen function in clamav-milter, when running in black hole mode, allow...

ClamAV milter popen command injection

Added: 09/06/2007 CVE: CVE-2007-4560 BID: 25439 OSVDB: 36909 Background ClamAV is an open-source anti-virus toolkit. clamav-milter is a derivative of ClamAV for e-mail servers running Sendmail. Problem An insecure call to the popen function in clamav-milter, when running in black hole mode, allow...

Mandrake Linux Security Advisory : clamav (MDKSA-2007:172)

A vulnerability in ClamAV was discovered that could allow remote attackers to cause a denial of service via a crafted RTF file or a crafted HTML document with a data: URI, both of which trigger a NULL dereference CVE-2007-4510. A vulnerability in clamav-milter, when run in black hole mode, could...

clamav-milter shell characters vulnerability

Insecure popen call with user-controlled value...

PHPMailer command execution

PHPMailer is a widely deployed utility class used in PHP application to handle emails sent through sendmail, PHP mailto or SMTP. It is used in PHP applications such as WordPress, Mantis, WebCalendar, Group-Office and Joomla. The last official release happened on July 11, 2005. If you have...

AFFLIB(TM): Multiple Shell Metacharacter Injections

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Virtual Security Research, LLC. http://www.vsecurity.com/ Security Advisory - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Advisory Name: Multiple Shell Metacharacter Injections in AFFLIB Release Date: 2007-04-27...

In the PHP implementation of the system to external command-and-vulnerability warning-the black bar safety net

PHP as a server side scripting language, like writing a simple, or a complex dynamic web page such a task, it is fully able to do the job. But the thing is not always the case, sometimes in order to achieve a certain function, it must be by means of theoperating systemof the external program, or...

wzdftpdwarez.pl.txt

0day0day0day0day0day0day0day ------------------------------- wzdftpd remote exploit by kcope nice call to popen3 on custom site commands... August 2005 confidential! keep private! ------------------------------- 0day0day0day0day0day0day0day . . | // / | | / \ / / /\ // |\ \ \ \ / | \ / / // //...

WzdFTPD 0.5.4 - Remote Command Execution

WzdFTPD 0.5.4 - Remote Command Execution 0day0day0day0day0day0day0day ------------------------------- wzdftpd remote exploit by kcope nice call to popen3 on custom site commands... August 2005 confidential! keep private! ------------------------------- 0day0day0day0day0day0day0day . . | // / | | ...

WzdFTPD 0.5.4 - Remote Command Execution

0day0day0day0day0day0day0day ------------------------------- wzdftpd remote exploit by kcope nice call to popen3 on custom site commands... August 2005 confidential! keep private! ------------------------------- 0day0day0day0day0day0day0day . . | // / | | / \ / / /\ // |\ \ \ \ / | \ / / // //...

Debian DSA-796-1 : affix - remote command execution

Kevin Finisterre reports that affix, a package used to manage bluetooth sessions under Linux, uses the popen call in an unsafe fashion. A remote attacker can exploit this vulnerability to execute arbitrary commands on a vulnerable system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

[SECURITY] [DSA 796-1] New affix packages fix remote command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 796-1 [email protected] http://www.debian.org/security/ Michael Stone September 1st, 2005 http://www.debian.org/security/faq -...

DSA-796-1 affix - unsafe use of popen

Bulletin has no description...

[Full-disclosure] Bluez hcid popen() explained.

kflistsatdigitalmunitiondotcom After the release of TheftOfLinkKey.txt I had several people mention that they did not quite understand why I consider the recently reported bluez vulnerability to be quite trivial. In this document I will attempt to outline an exploitable scenario for hcid using th...

CVE-1999-1580

SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS Internal Field Separator variable and passing crafted values to the -oR option...

CVE-1999-1580

SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS Internal Field Separator variable and passing crafted values to the -oR option...

CVE-1999-1580

CVE-1999-1580 affects SunOS sendmail 5.59–5.65. The bug arises from using popen to process a forwarding host argument, enabling local users to gain root privileges by manipulating the IFS variable and passing crafted values to the -oR option. This creates a local privilege escalation vector. Publ...

USN-99-1: PHP4 vulnerabilities

Stefano Di Paola discovered integer overflows in PHP's pack and unpack functions. A malicious PHP script could exploit these to break out of safe mode and execute arbitrary code with the privileges of the PHP interpreter. CAN-2004-1018 Note: The second part of CAN-2004-1018 buffer overflow in the...

CVE-1999-1468

CVE-1999-1468 affects rdist in various UNIX systems. The vulnerability arises when rdist uses popen to invoke sendmail, enabling local users to gain root privileges by modifying the IFS (Internal Field Separator) variable. The provided sources confirm the component and the privileged escalation v...