CVE-2007-5653

The Component Object Model COM functions in PHP 5.x on Windows do not follow safemode and disablefunctions restrictions, which allows context-dependent attackers to bypass intended limitations, as demonstrated by executing objects with the kill bit set in the corresponding ActiveX control...

Application to the ASP file upload vulnerability 0×0 0 truncation attack-vulnerability warning-the black bar safety net

k ingbase 2011/8/1 Chinese simple narrative This article translated from: 0×0 0 vs ASP file uploads, the original author is: Brett Moore Security-Assessment. com company, this article is written to 0 in 4 years, the original is here: http://...

IE Print Table of Links Cross-Zone Scripting

No description provided by source. html body 点击选项，选中打印链表列表，点打印 a href=”http://www.bl.com?zzz=dsasad script defer var ForWriting = 2; var strFile = ‘c:\test2.js’; var objFSO = new ActiveXObject’Scripting.FileSystemObject’; var objStream = objFSO.OpenTextFilestrFile,ForWriting,true,false;...

CVE-2007-5653

The Component Object Model COM functions in PHP 5.x on Windows do not follow safemode and disablefunctions restrictions, which allows context-dependent attackers to bypass intended limitations, as demonstrated by executing objects with the kill bit set in the corresponding ActiveX control...

CVE-2007-5653

The Component Object Model COM functions in PHP 5.x on Windows do not follow safemode and disablefunctions restrictions, which allows context-dependent attackers to bypass intended limitations, as demonstrated by executing objects with the kill bit set in the corresponding ActiveX control...

PHP 5.x COM functions safe_mode and disable_function bypass

No description provided by source. ?php //PHP 5.x COM functions safemode and disablefunction bypass //author: shinnai //mail: shinnaiatautisticidotorg //site: http://shinnai.altervista.org //dork: intitle:phpinfo intext:"php version" +windows thanks to rgod...

jnlp-overflow.txt

'----------------------------------------------------------------------------------------------- ' Java Web Start Buffer Overflow POC Exploit ' ' FileName: JavaWebStartPOC.VBS ' Contact: ZhenHan.Liuph4nt0m.org ' Date: 2007-07-10 ' Team: http://www.ph4nt0m.org ' Enviroment: Tested on JRE 1.6,...

CVE-2006-2317

Unspecified vulnerability in Ideal Science Ideal BB 1.5.4a and earlier allows remote attackers to read arbitrary files under the web root via unspecified attack vectors related to the OpenTextFile method in Scripting.FileSystemObject...

CVE-2001-1243

CVE-2001-1243 affects Microsoft IIS 4.0/5.0 with asp.dll Scripting.FileSystemObject. The vulnerability allows local or remote attackers to cause a denial of service (crash) by: (1) crafting an ASP program using Scripting.FileSystemObject to open a file using an MS-DOS device name, or (2) injectin...

CVE-2001-1243

Scripting.FileSystemObject in asp.dll for Microsoft IIS 4.0 and 5.0 allows local or remote attackers to cause a denial of service crash via 1 creating an ASP program that uses Scripting.FileSystemObject to open a file with an MS-DOS device name, or 2 remotely injecting the device name into ASP...

CVE-2001-1243

Scripting.FileSystemObject in asp.dll for Microsoft IIS 4.0 and 5.0 allows local or remote attackers to cause a denial of service crash via 1 creating an ASP program that uses Scripting.FileSystemObject to open a file with an MS-DOS device name, or 2 remotely injecting the device name into ASP...