51 matches found
CVE-2014-8165
scripts/amsvis/powerpcAMS/amsnet.py in powerpc-utils-python uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object...
Arris Touchstone TG862G/CT Cross Site Request Forgery
----------- Vendor: ----------- Arris Interactive, LLC http://www.arrisi.com/ ISP: Comcast Xfinity ----------------------------------------- Affected Products/Versions: ----------------------------------------- HW: Arris Touchstone TG862G/CT Xfinity branded SW: Version 7.6.59S.CT Tested...
CVE-2014-5260
The 1 mkxmltype and 2 mkdtskel scripts in XML-DT before 0.64 allow local users to overwrite arbitrary files via a symlink attack on a /tmp/xml temporary file...
Ubiquiti UbiFi mFi AirVision - Cross-Site Request Forgery
Ubiquiti UbiFi mFi AirVision - Cross-Site Request Forgery Vendor Homepage: http://www.ubnt.com/ Tested on: Kali Linux ----------------------------------------- Affected Products/Versions: ----------------------------------------- UniFi Controller v2.4.6 mFi Controller v2.0.15 AirVision Controller...
MS IE 5.0 ActiveX "Object for constructing type libraries for scriptlets" Vulnerability
No description provided by source. Microsoft Internet Explorer 5.0 for Windows 95/Windows 98/Windows NT 4 ActiveX Object for constructing type libraries for scriptlets Vulnerability source: http://www.securityfocus.com/bid/598/info The 'scriptlet.typlib' ActiveX control can create, edit, and...
CVE-2014-3423
lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic. temporary file...
CVE-2014-2328
lib/graphexport.php in Cacti 0.8.7g, 0.8.8b, and earlier allows remote authenticated users to execute arbitrary commands via shell metacharacters in unspecified vectors...
Fedora Core 10 FEDORA-2009-9601 (planet)
The remote host is missing an update to planet announced via advisory FEDORA-2009-9601. OpenVAS Vulnerability Test $Id: fcore20099601.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-9601 planet Authors: Thomas Reinke Copyright: Copyright c 2009 E-So...
Kyocera Mita Scanner File Utility 3.3.0.1 - File Transfer Directory Traversal
source: https://www.securityfocus.com/bid/30855/info Kyocera Mita Scanner File Utility is prone to a directory-traversal vulnerability because it fails to adequately sanitize user-supplied input. Attackers can exploit this issue to create and overwrite arbitrary files on the affected computer...
[SA16283] Microsoft ActiveSync Denial of Service and Equipment ID Enumeration
---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...
phpsource.traverse.txt
--SLDf9lqlvOQaIe6s Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable =3D=3D Vendor: Kaf Oseo =3D=3D Product: http://guff.szub.net/quick-dirty-phpsource-printer/ =3D=3D Version: 1.0 =3D=3D Vulnerability: Filtering "../" to "" allowed...