CGIEmail's CGICso (Send CSO via CGI) Command Execution Vulnerability

The remote host seems to be vulnerable to a security problem in CGIEmail cgicso. The vulnerability is caused by inadequate processing of queries by CGIEmail SPDX-FileCopyrightText: 2001 Noam Rathaus SPDX-FileCopyrightText: 2001 SecurITeam Some text descriptions might be excerpted from a reference...

Shopping Cart Arbitrary Command Execution (Hassan)

We detected the presence of the Shopping Cart CGI Hassan. A security problem in this CGI allows execution of arbitrary commands. SPDX-FileCopyrightText: 2001 SecuriTeam Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Check open ports

This plugin checks if the port scanners did not kill a service. SPDX-FileCopyrightText: 2002 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only Services known to crash or free...

AIX lscfg symbolic links problem

No description provided...

Solve 3 3 8 9 login to see the interface issue-bug warning-the black bar safety net

Today. The northeast wolf of a brother sent to one IP..that is just engage in the broiler..3 3 8 9. ..Can log into to see the desktop..can't do anything...ask me how to solve.. With and on the landing...a look as he said...just tried it..to solve this problem see the desktop..found broiler...

gdb security update

CentOS Errata and Security Advisory CESA-2005:709 An updated gdb package that fixes several bugs and minor security issues is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. GDB, the GNU debugger, allows debugging of programs written ...

apachetop utility symbolic links problem

Symbolic links problem on temporary filescreation...

[Full-disclosure] Nokia 7610, 3210 denial of service in OBEX.

Title: Nokia 7610, 3210 Denial of Service in OBEX. Severity: Low Affected: tested in nokia 7610 and nokia 3210 maybe others symbian phones. Problem type: remote Details: ---------------------------------------------------------------------------------------------------------- They are some flaw i...

perl, webmin, usermin -- perl format string integer wrap vulnerability

The Perl Development page reports: Dyad Security recently released a security advisory explaining how in certain cases, a carefully crafted format string passed to sprintf can cause a buffer overflow. This buffer overflow can then be used by an attacker to execute code on the machine. This was...

[SECURITY] [DSA 816-1] New XFree86 packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 816-1 [email protected] http://www.debian.org/security/ Martin Schulze September 19th, 2005 http://www.debian.org/security/faq -...

ncompress symbolic links problem

Symbolic links problem on temporary file creation...

Adobe Version Cue multiple vulnerabilities

Executable files are writable. It's possible to attach user's library to suid executable. Symbolic links problem...

landDownUnder.txt

Bugs Land Down Under v800 PHP/MySQL Website engine Copyright Neocrome - http://www.neocrome.net --------------------------------------------- Sql Injection and Cross Site Scripting Problem examlple : /ldu/forums.php?m=topics&s=' /ldu/list.php?c=articles&s=title&w=asc&o='&p=1...

LM Sensors symbolic links problem

Unsafe temporary files creation...

gforge -- XSS and email flood vulnerabilities

Jose Antonio Coret reports that GForge contains multiple Cross Site Scripting vulnerabilities and an e-mail flood vulnerability: The login form is also vulnerable to XSS Cross Site Scripting attacks. This may be used to launch phising attacks by sending HTML e-mails i.e.: saying that you need to...

[Full-disclosure] [ZH2005-16SA] Insecure temporary file creation in Skype for Linux

ZH2005-16SA Insecure temporary file creation in Skype for Linux Application: Skype for Linux Version affected: = 1.1.0.20 Vendor website : http://www.skype.com Author: Giovanni Delvecchio e-mail: [email protected] About Skype ======== Skype is a free program that uses the latest P2P technolog...

Heartbeat symbolic links problem

Smlink problems on temporary files creation in different code fragments...

SSA-18700 OpenSSH security problem fixed

New openssh packages are available to fix security problems. Here's the information from the Slackware 8.0 ChangeLog: ---------------------------- Thu Mar 7 12:00:18 PST 2002 patches/packages/openssh.tgz: Upgraded to openssh-3.1p1. This fixes a security problem in the openssh package. All sites...

SSA-18705 sudo upgrade fixes a potential vulnerability

New sudo packages are available to fix a security problem which may allow users to become root, or to execute arbitrary code as root. Heres's the information from the Slackware 8.0 ChangeLog: ---------------------------- Thu Apr 25 12:00:50 PDT 2002 patches/packages/sudo.tgz: Upgraded to...

Electronic Mail Operator symbolic links problem

statsdump symlink problem during temporary file creation...