Mandrake Linux Security Advisory : openafs (MDKSA-2007:066)

By default, OpenAFS prior to 1.44 and 1.5.17 supports setuid programs within the local cell, which could allow attackers to obtain privileges. Updated packages have been patched to address this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...

CVE-2007-1658

Windows Mail in Microsoft Windows Vista might allow user-assisted remote attackers to execute certain programs via a link to a 1 local file or 2 UNC share pathname in which there is a directory with the same base name as an executable program at the same level, as demonstrated using...

Code injection

server.cpp in MyServer 0.8.5 calls Process::setuid before calling Process::setgid and thus does not properly drop privileges, which might allow remote attackers to execute CGI programs with unintended privileges...

Code injection

templates/config/mail.tpl in Tim Soderstrom StatsDawg 0.92 allows remote attackers to execute arbitrary programs by specifying the program name in the qshapeLocation parameter...

CVE-2007-1588

server.cpp in MyServer 0.8.5 calls Process::setuid before calling Process::setgid and thus does not properly drop privileges, which might allow remote attackers to execute CGI programs with unintended privileges...

CVE-2007-1587

templates/config/mail.tpl in Tim Soderstrom StatsDawg 0.92 allows remote attackers to execute arbitrary programs by specifying the program name in the qshapeLocation parameter...

CVE-2007-1588

server.cpp in MyServer 0.8.5 calls Process::setuid before calling Process::setgid and thus does not properly drop privileges, which might allow remote attackers to execute CGI programs with unintended privileges...

CVE-2007-1507

The default configuration in OpenAFS 1.4.x before 1.4.4 and 1.5.x before 1.5.17 supports setuid programs within the local cell, which might allow attackers to gain privileges by spoofing a response to an AFS cache manager FetchStatus request, and setting setuid and root ownership for files in the...

Five ways to evade firewall control system-vulnerability warning-the black bar safety net

As Trojan, Backdoor non-stop development, the firewall itself is also in constant development, which is a spear and shield and relationships, know how to escape through the firewall for the control of a system is very important. Due to the firewall of development, today, many firewalls are based ...

Default configuration

The default configuration of WebAPP before 0.9.9.5 has a CAPTCHA setting of "no," which makes it easier for automated programs to submit false data...

CVE-2007-1184

CVE-2007-1184 affects WebAPP prior to version 0.9.9.5, where the default CAPTCHA configuration is set to “no.” This weakness makes it easier for automated programs to submit false data. The description explicitly states the default CAPTCHA exposure as the root cause and the resulting impact is au...

[SECURITY] Fedora Core 5 Update: postgresql-8.1.7-1.fc5

PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including transactions, subselects and user-defined types and functions. The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DB...

[SECURITY] Fedora Core 6 Update: postgresql-8.1.7-1.fc6

PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including transactions, subselects and user-defined types and functions. The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DB...

Design/Logic Flaw

The PML Driver HPZ12 HPZipm12.exe in the HP all-in-one drivers, as used by multiple HP products, uses insecure SERVICECHANGECONFIG DACL permissions, which allows local users to gain privileges and execute arbitrary programs, as demonstrated by modifying the binpath argument, a related issue to...

CVE-2007-0161

The PML Driver HPZ12 HPZipm12.exe in the HP all-in-one drivers, as used by multiple HP products, uses insecure SERVICECHANGECONFIG DACL permissions, which allows local users to gain privileges and execute arbitrary programs, as demonstrated by modifying the binpath argument, a related issue to...

AntiAntivirus (Internet can be ruined by antivrus)

Will AntiVirus ruin the Internet? 3APA3A security.nnov.ru Dmitry Leonov bugtraq.ru Alex Exler exler.ru Alexander Dilevsky yandex.ru Alexander Antipov securitylab.ru Ilya Medvedovsky dsec.ru Vladislav Myasnyankin BugTraq.Ru The seemingly uncomplicated mail worm Sobig.f broke all distribution...

Simple, make a hidden program to“jump”out-vulnerability warning-the black bar safety net

Perform one software, double-click its main program. If this software is in a very deep in a folder, we'll have one layer have to open the folder, find the“hidden”in the depths of the program. For convenience, we will provide these programs on the desktop create a shortcut, but because of the...

CVE-2006-5965

PassGo SSO Plus 2.1.0.32, and probably earlier versions, uses insecure permissions Everyone/Full Control for the PassGo Technologies directory, which allows local users to gain privileges by modifying critical programs...

Kerio WebStar本地权限提升漏洞

Kerio WebSTAR是运行在Mac OS X平台上的WEB服务器。 Kerio WebSTAR在不安全的权限安装程序文件，本地攻击者可能利用此提升自己的权限。 在安装Kerio WebSTAR时/Applications中继承了两个setuid二进制程序： kevin-finisterres-computer:/Desktop kf$ find /Applications/Kerio\ WebSTAR -perm -4000 -ls 978790 3016 -rwsrwx--x 1 root admin 1542556 Apr 10 2006 /Applications/Kerio...

openexec_duh.pl.txt

!/usr/bin/perl http://www.digitalmunition.com written by kf kflistsatdigitalmunitiondotcom \n\nTargets:\n\n"; foreach $key sortkeys %tgts $a,$b = split/:/,$tgts"$key"; print "\t$key . $a - $b\n"; print "\n"; exit 1; $ret = pack"l", $retval; $a,$b = split/:/,$tgts"$target"; print " Target: $a -...