CVE-2005-0745

UTStarcom iAN-02EX VoIP Analog Terminal Adaptor ATA allows local users to bypass ATA access restrictions by dialing "26845" and causing a device reset...

postgresql -- multiple vulnerabilities

Multiple vulnerabilities had been reported in various versions of PostgreSQL: The EXECUTE restrictions can be bypassed by using the AGGREGATE function, which is missing a permissions check. A buffer overflow exists in gram.y which could allow an attacker to execute arbitrary code by sending a lar...

CVE-2004-2481

MyProxy 6.58 allows remote authenticated users in the Users Tab to connect to arbitrary hosts from the MyProxy server, possibly bypassing access restrictions, by connecting to the proxy and issuing a CONNECT command...

CVE-2004-1031

CVE-2004-1031 affects Fcron (notably 2.0.1 and 2.9.4) and potentially earlier versions. The issue allows a local user to bypass access restrictions and load an arbitrary fcron configuration file by starting a setuid process and pointing the fcronsighup configuration file at a /proc entry owned by...

CVE-2004-0099

mksnapffs in FreeBSD 5.1 and 5.2 only sets the snapshot flag when creating a snapshot for a file system, which causes default values for other flags to be used, possibly disabling security-critical settings and allowing a local user to bypass intended access restrictions...

CVE-2004-0432

ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allow FTP clients to bypass intended access restrictions...

CVE-2003-0816

CVE-2003-0816 applies to Internet Explorer 6 SP1 and earlier and is the Script URLs Cross Domain vulnerability (CAN-2003-0816). It allows a remote attacker to bypass IE’s cross-domain security by abusing scripted navigation and framing techniques (NavigateAndFind with file:JavaScript URLs, window...

JRE/JDK sandbox breaking

By using / instead of . in class name it's possible to bypass sandbox restrictions...

CVE-2002-1016

Adobe eBook Reader allows a user to bypass restrictions for copy, print, lend, and give operations by backing up key data files, performing the operations, and restoring the original data files...

CVE-2002-0763

The CVE-2002-0763 entry documents a vulnerability in the administration server of HP VirtualVault 4.5 on HP-UX 11.04. The issue permits remote web servers or privileged external processes to bypass access restrictions and establish connections to the HP VirtualVault server. Affected component is ...

CVE-2001-0766

Apache on MacOS X Client 10.0.3 with the HFS+ file system allows remote attackers to bypass access restrictions via a URL that contains some characters whose case is not matched by Apache's filters...

CVE-2001-0405

ipconntrackftp in the IPTables firewall for Linux 2.4 allows remote attackers to bypass access restrictions for an FTP server via a PORT command that lists an arbitrary IP address and port number, which is added to the RELATED table and allowed by the firewall...

CVE-2000-0587

The privpath directive in glftpd 1.18 allows remote attackers to bypass access restrictions for directories by using the file name completion capability...

CVE-2000-0124

surfCONTROL SuperScout does not properly asign a category to web sites with a . dot at the end, which may allow users to bypass web access restrictions...

CVE-1999-0992

HP VirtualVault with the PHSS17692 patch allows unprivileged processes to bypass access restrictions via the Trusted Gateway Proxy TGP...