7634 matches found
CVE-2005-0539
Unknown vulnerability in IBM Hardware Management Console HMC before 4.4 for POWER5 servers allows local users to gain privileges, related to the Guided Setup Wizard...
Microsoft Internet Explorer Content Advisor contains a buffer overflow
Overview A buffer overflow in Microsoft Internet Explorer Content Advisor may allow a remote attacker to execute arbitrary code on a vulnerable system. Description The Content Advisor is used to control what content is viewable in Internet Explorer. A buffer overflow exists in the routines that...
CVE-2005-0713
The CVE-2005-0713 issue affects Apple Mac OS X up to and including 10.3.7, where the Bluetooth Setup Assistant can be launched without a keyboard or Bluetooth device, allowing local users to bypass access restrictions and gain privileges. The underlying risk is local privilege escalation via an i...
CVE-2005-0713
The Bluetooth Setup Assistant for Mac OS X before 10.3.8 can be launched without a keyboard or Bluetooth device, which allows local users to bypass access restrictions and gain privileges...
CVE-2005-0713
The Bluetooth Setup Assistant for Mac OS X before 10.3.8 can be launched without a keyboard or Bluetooth device, which allows local users to bypass access restrictions and gain privileges...
Mac OS X Multiple Vulnerabilities (Security Update 2005-003)
The remote host is missing Security Update 2005-003. This security update contains security fixes for the following applications : - AFP Server - Bluetooth Setup Assistant - Core Foundation - Cyrus IMAP - Cyrus SASL - Folder Permissions - Mailman - Safari These programs have multiple...
Apple Mac OSX 10.3.x - Multiple Vulnerabilities
// source: https://www.securityfocus.com/bid/12863/info Multiple security vulnerabilities are reported to affect Apple Mac OS X. These issues were disclosed in the referenced vendor advisory. Insecure permissions are reported to be set on certain Apple Mac OS X folders . It is reported that becau...
paNews 2.0.4b Multiple Input Validation Vulnerabilities
The remote host is running a version of paNews that suffers from the following vulnerabilities: - SQL Injection Issue in the 'login' method of includes/auth.php. A remote attacker can leverage this vulnerability to add users with arbitrary privileges. - Local Script Injection Vulnerability in...
[SA14377] IBM HMC Guided Setup Wizard Vulnerability
TITLE: IBM HMC Guided Setup Wizard Vulnerability SECUNIA ADVISORY ID: SA14377 VERIFY ADVISORY: http://secunia.com/advisories/14377/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system OPERATING SYSTEM: IBM Hardware Management Console HMC http://secunia.com/product/3967/...
CVE-2005-0539
Unknown vulnerability in IBM Hardware Management Console HMC before 4.4 for POWER5 servers allows local users to gain privileges, related to the Guided Setup Wizard...
CVE-2005-0539
CVE-2005-0539 affects IBM Hardware Management Console (HMC) for POWER5 servers prior to version 4.4. The issue, related to the Guided Setup Wizard, permits local users to gain privileges (partial confidentiality, integrity, and availability impacts described by CVSS 2.0: Base 4.6). IBM lists a fi...
paNews v2.0b4 - PHP Injection
oooo oooo oooooooo8 ooooooooooo 8888o 88 888 88 888 88 88 888o88 888oooooo 888 88 8888 888 888 o88o 88 o88oooo888 o888o Network security team nst.e-nex.com Title: paNews v2.0b4 Bug found by: тёмыч Date: 20.02.2005 web: http://www.phparena.net/panews.php google: allintitle:paNews v2.0b4 PHP...
Yahoo messenger multiple security vulnerabilities
Filename spoofing, local privilege escalation with Audio Setup Wizard...
CVE-2005-0242
The CVE-2005-0242 vector affects Yahoo! Messenger (Windows), where the Audio Setup Wizard (asw.dll) could execute arbitrary code by placing a malicious ping.exe in the Messenger directory due to weak default permissions. The vulnerability enables local code execution with the privileges of the us...
GNU a2ps - Anything to PostScript Not SUID Local Overflow
/ Not added to Local Non Poc section /str0ke / include include include // by lizard / lizstyleatgmail.com // greets go to slider/trog for helpin me // not suid by default ; define VULNTHING "/usr/bin/a2ps" define DEFRET 0xbffffffa - strlensc - strlenVULNTHING define xnullbitch 1100 //im not a asm...
Microsoft Internet Explorer Install Engine Control Buffer Overflow (#NISR19012005a)
NGSSoftware Insight Security Research Advisory Name: Microsoft Internet Explorer Install Engine Control Buffer Overflow Systems Affected: Microsoft Internet Explorer 5.x/6.x Severity: High Vendor URL: http://www.microsoft.com/ Author: Peter Winter-Smith [email protected] Date of Public...
DEBIAN-CVE-2004-1311
Integer overflow in the realsetupandgetheader function in real.c for Unix MPlayer 1.0pre5 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a Real RTSP streaming media file with a -1 content-length field, which leads to a heap-based...
CVE-2004-2718
PHPMyChat 0.14.5 does not remove or protect setup.php3 after installation, which allows attackers to obtain sensitive information including database passwords via a direct request...
CVE-2004-2407
Unknown vulnerability in phpGroupWare before 0.9.14.002 has unknown attack vectors and impact, related to a "security hole" in the Setup/Config functionality...
Ultrix dxterm buffer overflow
setup flag buffer overflow...