Lucene search
K

7551 matches found

Cvelist
Cvelist
added 2002/03/09 5:0 a.m.21 views

CVE-2001-0371

Race condition in the UFS and EXT2FS file systems in FreeBSD 4.2 and earlier, and possibly other operating systems, makes deleted data available to user processes before it is zeroed out, which allows a local user to access otherwise restricted information...

6.4AI score0.00299EPSS
Exploits0References3
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.22 views

CVE-2001-1037

Cisco SN 5420 Storage Router 1.13 and earlier allows local users to access a developer's shell without a password and execute certain restricted commands without being logged...

6.9AI score0.00486EPSS
Exploits1References4
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.16 views

CVE-1999-1204

Check Point Firewall-1 does not properly handle certain restricted keywords e.g., Mail, auth, time in user-defined objects, which could produce a rule with a default "ANY" address and result in access to more systems than intended by the administrator...

6.5AI score0.0136EPSS
Exploits0References4
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.27 views

CVE-2001-0816

OpenSSH before 2.9.9, when running sftp using sftp-server and using restricted keypairs, allows remote authenticated users to bypass authorizedkeys2 command= restrictions using sftp commands...

9AI score0.01794EPSS
Exploits0References6
NVD
NVD
added 2001/12/06 5:0 a.m.23 views

CVE-2001-0816

OpenSSH before 2.9.9, when running sftp using sftp-server and using restricted keypairs, allows remote authenticated users to bypass authorizedkeys2 command= restrictions using sftp commands...

7.5CVSS6.3AI score0.01794EPSS
Exploits0References6
NVD
NVD
added 2001/10/22 4:0 a.m.19 views

CVE-2001-1461

Directory traversal vulnerability in WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to access restricted resources via URL-encoded 1 /.. or 2 .. sequences...

7.5CVSS6.6AI score0.01818EPSS
Exploits0References3
securityvulns
securityvulns
added 2001/09/24 12:0 a.m.30 views

Citrix Client Access Verification

Your professional opinions are appreciated. About a month ago I had posted the below as a Citrix Client Access Advisory and got several responses to the fact that it either it was not a valid vulnerabilty or that it was a default configuration problem. which may be true. but consider this. The...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2001/09/19 12:0 a.m.30 views

OpenSSH: sftp & bypassing keypair auth restrictions

OpenSSH: sftp-server & bypassing keypair auth restrictions Summary: If you 1 are using keypairs and /.ssh/authorizedkeys2 to enable remote execution of commands via OpenSSH's sshd and 2 have sshd configured to provide sftp service via the sftp-server subsystem, then clients who have access with...

0.3AI score
Exploits0
CVE
CVE
added 2001/09/12 4:0 a.m.55 views

CVE-1999-1347

CVE-1999-1347 affects Red Hat Linux 6.1 and earlier. The vulnerability arises in Xsession, where local users with restricted accounts can bypass execution of the .xsession file by starting a desktop session (KDE, GNOME or similar) from KDM. This bypass allows the user to run with the environmenta...

4.6CVSS6.9AI score0.00451EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2001/09/10 4:0 a.m.20 views

CVE-2001-1407

Bugzilla before 2.14 allows Bugzilla users to bypass group security checks by marking a bug as the duplicate of a restricted bug, which adds the user to the CC list of the restricted bug and allows the user to view the bug...

7.5CVSS6.5AI score0.01163EPSS
Exploits0References4
NVD
NVD
added 2001/06/18 4:0 a.m.15 views

CVE-2001-0371

Race condition in the UFS and EXT2FS file systems in FreeBSD 4.2 and earlier, and possibly other operating systems, makes deleted data available to user processes before it is zeroed out, which allows a local user to access otherwise restricted information...

6.2CVSS6.4AI score0.00299EPSS
Exploits0References3
securityvulns
securityvulns
added 2001/03/01 12:0 a.m.107 views

Vulnerability in TYPSoft FTP Server

----- Begin Hush Signed Message from [email protected] ----- Vulnerability in TYPSoft FTP Server Overview TYPSoft FTP Server v0.85 is an ftp server available from http://www.webmasterfree.com and http://typsoft.n3.net. A vulnerability exists which allows a remote attacker to break out of the...

7.3AI score
Exploits0
exploitpack
exploitpack
added 2001/02/28 12:0 a.m.15 views

datawizards ftpxq 2.0.93 - Directory Traversal

datawizards ftpxq 2.0.93 - Directory Traversal source: https://www.securityfocus.com/bid/2426/info FtpQX is a ftp daemon designed to provide ftp services for Microsoft Operating Systems. It is maintained and distributed by Datawizard Technologies. A problem in the software could allow access to...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2001/02/28 12:0 a.m.29 views

datawizards ftpxq 2.0.93 - Directory Traversal

source: https://www.securityfocus.com/bid/2426/info FtpQX is a ftp daemon designed to provide ftp services for Microsoft Operating Systems. It is maintained and distributed by Datawizard Technologies. A problem in the software could allow access to restricted resources. Due to insufficient input...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2001/02/12 12:0 a.m.28 views

Дырка в GroupWise client

Пользователь может получить доступ к файлам, доступ к которым запрещен системной политикой используя файлы в качестве вложения в письмо...

0.6AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2000/09/12 12:0 a.m.36 views

Дырка в SiteMinder

С помощью специально сконструированной URL можно получить доступ к закрытым документам, кроме того, можно получить исходные тексты CGI-приложений...

0.6AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2000/08/12 12:0 a.m.254 views

Security Bulletin (MS00-057)

Microsoft Security Bulletin MS00-057 - -------------------------------------- Patch Available for "File Permission Canonicalization" Vulnerability Originally posted: August 10, 2000 Summary ======= Microsoft has released a patch that eliminates a security vulnerability in Microsoftr Internet...

7AI score
Exploits0
Cvelist
Cvelist
added 2000/07/12 4:0 a.m.25 views

CVE-2000-0030

Solaris dmispd dmicmd allows local users to fill up restricted disk space by adding files to the /var/dmi/db database...

6.3AI score0.01025EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2000/05/31 12:0 a.m.24 views

bugzpladv1_eng.txt

0x15.0x05.Y2K ------------------------------------- BugzPL ADVISORY 1, final version ------------------------------------- Bypassing restricted bash for fun and profit ; I. Introduction bash-2 gives us a possibility to use a shell in restricted mode. This mode can be initiated using several metho...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2000/05/12 12:0 a.m.82 views

NTMail Proxy Exploit

NTmail version 5.x possibly other versions, I haven't checked has two web functions. One is a web configuration server which lets you configure the mail server via a browser. The other is it can also work as a proxy server. These two functions are set by default to use two different ports 8000 fo...

6.8AI score
Exploits0
Rows per page
Query Builder