lftp file overwrite

Downloaded file name in lftpget may be set by server without user confirmation...

kernel: GFS2: The setflags ioctl() doesn't check file ownership

The dogfs2setflags function in fs/gfs2/file.c in the Linux kernel before 2.6.34-git10 does not verify the ownership of a file, which allows local users to bypass intended access restrictions via a SETFLAGS ioctl request...

nsGenericDOMDataNode:: SetTextInternal

Integer overflow in the nsGenericDOMDataNode::SetTextInternal function in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allows remote attackers to execute arbitrary code via a DOM node with a long text value that triggers a...

CVE-2010-1515

Multiple cross-site scripting XSS vulnerabilities in index.php in TomatoCMS 2.0.6 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 keyword or 2 article-id parameter in conjunction with a /admin/news/article/list PATHINFO; the 3 keyword parameter in conjunction...

DEBIAN-CVE-2004-2768

dpkg 1.9.21 does not properly reset the metadata of a file during replacement of the file in a package upgrade, which might allow local users to gain privileges by creating a hard link to a vulnerable 1 setuid file, 2 setgid file, or 3 device, a related issue to CVE-2010-2059...

Linux/x86 - Disable randomize stack addresse - 106 bytes

Linux/x86 - Disable randomize stack addresse - 106 bytes. Shellcode exploit for linux platform / Title: Linux/x86 - Disable randomize stack addresse - 106 bytes Set randomizevaspace to zero Author: Jonathan Salwan Web: http://www.shell-storm.org Twitter: http://twitter.com/jonathansalwan !Databas...

[SECURITY] Fedora 11 Update: lighttpd-1.4.26-2.fc11

Secure, fast, compliant and very flexible web-server which has been optimiz ed for high-performance environments. It has a very low memory footprint compa red to other webservers and takes care of cpu-load. Its advanced feature-set FastCGI, CGI, Auth, Output-Compression, URL-Rewriting and many mo...

OpenJDK JRE AWT setBytePixels heap overflow (6872358)

Heap-based buffer overflow in the setBytePixels function in the Abstract Window Toolkit AWT in Java Runtime Environment JRE in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.127, and SDK and JRE 1.4.x before 1.4.224 allows remote...

kernel: DoS on x86_64

The loadelfbinary function in fs/binfmtelf.c in the Linux kernel before 2.6.32.8 on the x8664 platform does not ensure that the ELF interpreter is available before a call to the SETPERSONALITY macro, which allows local users to cause a denial of service system crash via a 32-bit application that...

Fedora Update for pidgin-sipe FEDORA-2010-4830

Check for the Version of pidgin-sipe OpenVAS Vulnerability Test Fedora Update for pidgin-sipe FEDORA-2010-4830 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

PT-2010-1279 · Varnish · Varnish

Name of the Vulnerable Software and Affected Versions: Varnish versions prior to 2.1.0 Description: The Command Line Interface in the master process of the reverse proxy server does not require authentication for commands received through a TCP port. This allows remote attackers to execute...

OpenJDK No ClassCastException for HashAttributeSet constructors if run with -Xcomp (6894807)

Unspecified vulnerability in the HotSpot Server component in Oracle Java SE and Java for Business 6 Update 18, 5.0, Update, and 23 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

Kwik Pay Payroll v4.10.3 .mdb Crash PoC

Exploit for windows platform in category dos / poc =============================== Kwik Pay Payroll .mdb Crash PoC =============================== Version: 4.10.3 Tested on: Windows XP SP3 Cost: 100.00 AU Author: chap0 Email: chap0x90atgmaildotcom Site: http://www.setfreesecurity.com Usage: Run...

Multi CSRF vulnerability in DirectAdmin (1.34.4)

Exploit for unknown platform in category web applications ================================================ Multi CSRF vulnerability in DirectAdmin 1.34.4 ================================================ ============================================================================= Title : Multi CS...

DirectAdmin 1.34.4 - Multiple Cross-Site Request Forgerys

DirectAdmin 1.34.4 - Multiple Cross-Site Request Forgerys ============================================================================= Title : Multi CSRF vulnerability in DirectAdmin 1.34.4 Date : 20-3-2010 Version : 1.34.4 Author : K053 K053.Dev0te3 AT gmail Tested on : Ubuntu Vendor :...

firefox/thunderbird/seamonkey: XSS using addEventListener and setTimeout on a wrapped object (MFSA 2010-12)

No description is available for this CVE...

Under Linux install Metasploit to hack Oracle login user name and password-vulnerability warning-the black bar safety net

Recently in engage in oracle, some of the little things to record. | --- Metasploit is a very good attack Toolkit, of course, we this time not to introduce this Toolkit, primarily large cattle MC wrote many oracle tools, in recent often. I mainly use classic tools tnscmd transplanted to the MSF i...

firefox/thunderbird/seamonkey: XSS using addEventListener and setTimeout on a wrapped object (MFSA 2010-12)

Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x before 3.6.2; Thunderbird before 3.0.2; and SeaMonkey before 2.0.3 allow remote attackers to perform cross-origin keystroke capture, and possibly conduct cross-site scripting XSS attacks, by using the addEventListener and setTimeo...

firefox/thunderbird/seamonkey: XSS using addEventListener and setTimeout on a wrapped object (MFSA 2010-12)

Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x before 3.6.2; Thunderbird before 3.0.2; and SeaMonkey before 2.0.3 allow remote attackers to perform cross-origin keystroke capture, and possibly conduct cross-site scripting XSS attacks, by using the addEventListener and setTimeo...

RealPlayer: RTSP SET_PARAMETER buffer overflow

Buffer overflow in the RTSPProtocol::HandleSetParameterRequest function in client/core/rtspprotocol.cpp in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and...