2539 matches found
rsync: Directory traversal in rsync daemon
Background rsync is a utility that provides fast incremental file transfers. It is used to efficiently synchronize files between hosts and is used by emerge to fetch Gentoo's Portage tree. rsyncd is the rsync daemon, which listens to connections from rsync clients. Description When rsyncd is used...
CVE-2004-0426
rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot, which allows remote attackers to write files outside of the module's path...
security flaw
rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot, which allows remote attackers to write files outside of the module's path...
Important: Red Hat Security Advisory: rsync security update
An updated rsync package that fixes a directory traversal security flaw is now available. Rsync is a program for synchronizing files over a network. Rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot. This could allow a remote attacker to wri...
CVE-2004-0426
rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot, which allows remote attackers to write files outside of the module's path...
Portmon file arbitrary read/write access vulnerability
Package: Portmon Auth: http://www.aboleo.net/ Versions: 1.7 prior ? Vulnerability: File arbitrary read/write access vulnerability Portmon is a network service monitoring daemon http://www.aboleo.net/software/portmon/. "In order to use ping support, Portmon must run as root or be installed setuid...
SNMP security issues in D-Link DSL Broadband Modem/Router
Arhont Ltd - Information Security Company Arhont Advisory by: Andrei Mikhailovsky www.arhont.com Advisory: D-Link DSL Broadband Modem/Router Router Model Name: D-Link DSL-500 Model Specific: Other models might be vulnerable as well Manufacturer site: http://www.dlink.com Manufacturer contact UK:...
Default SNMP community in Surecom Broadband Router
Arhont Ltd. - Information Security Arhont Advisory by: Andrei Mikhailovsky www.arhont.com Advisory: Surecom Broadband Router Router Model Name: EP-4501 Model Specific: Other models might be vulnerable Manufacturer site: http://www.surecom.com.tw Manufacturer contact: [email protected] Contac...
AlienForm2 CGI script: arbitrary file read/write
===================================================================== Vulnerable: AlienForm2 revision 1.5 Category: Perl/CGI coding errors Impact: Subject to file permissions, an attacker can read any file on the server, append arbitrary data to any existing file or write arbitrary data to new...
Доступ к специальным устройствам в некоторых Web/FTP-серверах (special devices)
Возможно чтение/запись специальных устройств...
CVE-2001-0203
Watchguard Firebox II firewall allows users with read-only access to gain read-write access, and administrative privileges, by accessing a file that contains hashed passphrases, and using the hashes during authentication...
Cisco IOS/CatOS exposes read-write SNMP community string via traversal of View-based Access Control MIB (VACM) using read-only community string
Overview There is a vulnerability that permits unauthorized access to several switch and router products manufactured by Cisco Systems. An attacker who gains access to an affected device can read and modify its configuration, creating a denial-of-service condition, an information leak, or both...
Cisco IOS/X12-X15 has default SNMP read/write string of "cable-docsis"
Overview There is a vulnerability that permits unauthorized access to several switch and router products manufactured by Cisco Systems. An attacker who gains access to an affected device can read and modify its configuration, creating a denial-of-service condition, an information leak, or both...
CVE-2004-1776
Cisco IOS 12.13 and 12.13T allows remote attackers to read and modify device configuration data via the cable-docsis read-write community string used by the Data Over Cable Service Interface Specification DOCSIS standard...
Cisco IOS Software SNMP Read-Write ILMI Community String Vulnerability
...
aix-snmp.txt
Following on from Michael Zalewski's recent SNMP post, here's an issue i noted on two AIX systems. NOTE: This was seen on both AIX 4.3 and 4.2. It appears that on the above releases of AIX, the SNMP daemon is enabled by default and two community names are enabled with read/write privileges. The...
msie.5.0.hta.txt
Date: Tue, 8 Jun 1999 08:41:54 -0400 From: "Noller, Jesse" To: [email protected] Subject: IE 5.0 and HTAs Security hole Good day: I recently set up an NT box, with just the basic setup, no other modifications, other than SP5, and an installation of Internet Explorer 5.0. I was...
PT-1997-1073 · Nfs · Nfs
Name of the Vulnerable Software and Affected Versions: NFS affected versions not specified Description: The issue allows attackers to read and write any file on the system by specifying a false UID. Recommendations: At the moment, there is no information about a newer version that contains a fix...
Update rollup for the Single Instance Storage (SIS) component
None None...