669 matches found
CVE-2003-0977
CVE-2003-0977 affects the CVS server prior to 1.11.10, where malformed module requests could cause the server to create directories and files in the filesystem root. The issue is documented across multiple advisories (e.g., RHSA-2004:004, MDKSA-2003:112-1, DSA 422-1) with a common remediation: up...
[Full-Disclosure] Bytehoard File Disclosure VUlnerability Sequel
So I'm sure this passed over your inboxes in some form or another.... http://www.securiteam.com/unixfocus/6L00L008KE.html Just a standard directory traversal attack in an open source, fixed rapidly like any good open source project. Except that nobody really looked too hard at the software, try...
Postnuke: path disclosure (0.7.2.3 and prior)
Intro. What is PostNuke ? PostNuke is a weblog/Content Management System CMS. It is far more secure and stable than competing products. Home Page: http://www.postnuke.com && A vulnerability have been found in Postnuke v0.7.2.3-Phoenix & prior which allow users to determine the physical path of th...
PostNuke Sensitive Information Disclosure
Title: PostNuke path disclosure, and... db name. Version: 0.7.2.3-Phoenix other Problem: A vulnerability have been found in Postnuke v0.7.2.3-Phoenix which allow users to determine the physical path of this cms. This vulnerability would allow a remote user to determine the full path to the web ro...
CVE-2002-2094
Joe Testa hellbent 01 allows remote attackers to determine the full path of the web root directory via a GET request with a relative path that includes the root's parent, which generates a 403 error message if the parent is incorrect, but a normal response if the parent is correct...
Root directory access in Cisco Secure ACS
By adding additional slah to URL after hostname it's possible to address root folder...
Hosting Controller 1.4 - Import Root Directory Command Execution
source: https://www.securityfocus.com/bid/4761/info Hosting Controller is an application which consolidates all hosting tasks into one interface. Hosting Controller runs on Microsoft Windows operating systems. The Import Root Directory improotdir.asp script does not force an authentication...
AtheOS 0.3.7 - Change Root Directory Escaping
AtheOS 0.3.7 - Change Root Directory Escaping / source: https://www.securityfocus.com/bid/4051/info AtheOS is a freely available, open source operating system. It is distributed under the GPL, and maintained by the AtheOS project. It is possible to escape change rooted directories on AtheOS. Due ...
AtheOS 0.3.7 - Change Root Directory Escaping
/ source: https://www.securityfocus.com/bid/4051/info AtheOS is a freely available, open source operating system. It is distributed under the GPL, and maintained by the AtheOS project. It is possible to escape change rooted directories on AtheOS. Due to insufficient handling of relative pathes, a...
Ошибка в RaidenFTP
При попытке обращения к файлу в корневом каталоге файл удаляется...
RaidenFTPD v2.2 Arbitrary File Deletion Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 RaidenFTPD v2.2 Arbitrary File Deletion Vulnerability Type: Delete Arbitrary Files Release Date: January 13, 2002 Product / Vendor: RaidenFTPD ftp server solution for Win95/98/NT/2000 http://www.raidenftpd.com/en/ Summary: A vulnerability exists in...
CVE-2001-0758
Directory traversal vulnerability in Shambala 4.5 allows remote attackers to escape the FTP root directory via "CWD ..." command...
CVE-2001-0758
Summary: CVE-2001-0758 describes a directory traversal vulnerability in Shambala 4.5 that allows remote attackers to escape the FTP root directory using the CWD command. The connected documents corroborate this description, identifying the affected product as Shambala 4.5 and the attack vector as...
CVE-2001-0626
O'Reilly Website Professional 2.5.4 and earlier allows remote attackers to determine the physical path to the root directory via a URL request containing a ":" character...
1C: Arcadia Internet Store 1.0 - Arbitrary File Disclosure
1C: Arcadia Internet Store 1.0 - Arbitrary File Disclosure source: https://www.securityfocus.com/bid/2902/info 1C: Arcadia Internet Store is a online shopping utility for Microsoft Windows NT/2000 that is fully integratable with 1C: Enterprise, another popular Russian web-commerce utility. One of...
Дырка в clean-tmps в FreeBSD
Можно удалить любые файлы в корневом каталоге...
4.3 Security: local DoS via clean-tmps
Tested in 4.3-RELEASE only: If /etc/periodic/daily/clean-tmps is enabled, then it's possible for any local user to trick it into calling unlink or rmdir on anything in the root directory. The problem is that "find -delete" can be made to do chdir".." multiple times followed by unlink and/or rmdir...
CVE-2001-0749
Beck IPC GmbH IPC@CHIP Embedded-Webserver allows remote attackers to read arbitrary files via a webserver root directory set to system root...
Faststream FTP++ Client 2 Beta 11 (build in server) Vulnerability
Faststram FTP built in server responds with the real path of directory instead of a virtual one.It is possible to get files outside of root.dir. e:crap was used as root directory 1. directory path 230 User anonymous logged in. ftp pwd 257 "/E:/crap/" is current directory. 2. getting files from...
Brightstation Muscat 1.0 - Full Path Disclosure
Brightstation Muscat 1.0 - Full Path Disclosure source: https://www.securityfocus.com/bid/2374/info Making an invalid request to a machine running Brightstation Muscat, will disclose the physical path to the root directory. http://target/cgi-bin/empower?DB=UkRteamHole...