1774 matches found
xymon-server -- multiple vulnerabilities
J.C. Cleaver reports: CVE-2016-2054: Buffer overflow in xymond handling of "config" command CVE-2016-2055: Access to possibly confidential files in the Xymon configuration directory CVE-2016-2056: Shell command injection in the "useradm" and "chpasswd" web applications CVE-2016-2057: Incorrect...
ZTE SOHO ROUTERWEB_SHELL_CMD.GCH 远程命令执行漏洞
漏洞概要 2014 年 3 月 3 日,Rapid7 团队发布了中兴 F460 / F660 后门信息1,任何可以访问设备的用户都可以直接访问一个命令执行的 Web 界面,以 root 权限执行任意命令。 上述设备在中国境内被广泛应用,俗称“电信光猫”。 漏洞描述 ZTE 生产的 SOHO Router 的一些型号中,Web 根目录(/home/httpd )下存在 /webshellcmd.gch 文件,没有任何访问控制,可以直接执行任意系统命令。 以下几点值得注意: Rapid7 于 2014 年 3 月 3 日公布此漏洞,但是根据搜索结果,此问题早在 2012...
Updated python-pygments packages fix security vulnerability
An unsafe use of string concatenation in a shell string occurs in FontManager. If the developer allows the attacker to choose the font and outputs an image, the attacker can execute any shell command on the remote system. The name variable injected comes from the constructor of FontManager, which...
MGASA-2015-0478 Updated python-pygments packages fix security vulnerability
An unsafe use of string concatenation in a shell string occurs in FontManager. If the developer allows the attacker to choose the font and outputs an image, the attacker can execute any shell command on the remote system. The name variable injected comes from the constructor of FontManager, which...
Amazon Linux: Security Advisory (ALAS-2015-630)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux AMI : python-pygments (ALAS-2015-630)
An unsafe use of string concatenation in a shell string occurs in FontManager. If the developer allows the attacker to choose the font and outputs an image, the attacker can execute any shell command on the remote system. The name variable injected comes from the constructor of FontManager, which...
git-fastclone permits arbitrary shell command execution from .gitmodules
Git allows executing arbitrary shell commands using git-remote-ext via a remote URLs. Normally git never requests URLs that the user doesn't specifically request, so this is not a serious security concern. However, submodules did allow the remote repository to specify what URL to clone from. If a...
MGASA-2015-0456 Updated python-pygments packages fix security vulnerability
An unsafe use of string concatenation in a shell string occurs in FontManager. If the developer allows the attacker to choose the font and outputs an image, the attacker can execute any shell command on the remote system. The name variable injected comes from the constructor of FontManager, which...
setroubleshoot: insecure use of commands.getstatusoutput in sealert
A shell command injection flaw was found in the way the setroubleshoot executed external commands. A local attacker able to trigger certain SELinux denials could use this flaw to execute arbitrary code with root privileges...
http-vuln-cve2014-8877 NSE Script
Exploits a remote code injection vulnerability CVE-2014-8877 in Wordpress CM Download Manager plugin. Versions = 2.0.0 are known to be affected. CM Download Manager plugin does not correctly sanitise the user input which allows remote attackers to execute arbitrary PHP code via the CMDsearch...
FreeBSD : p5-UI-Dialog -- shell command execution vulnerability (00dadbf0-6f61-11e5-a2a1-002590263bf5)
Matthijs Kooijman reports : It seems that the whiptail, cdialog and kdialog backends apply some improper escaping in their shell commands, causing special characters present in menu item titles to be interpreted by the shell. This includes the backtick evaluation operator, so this constitutes a...
Updated isodumper package fixes command injection
The volume label text could be injected and executed as a shell command in rawformat.py from isodumper...
Pygments FontManager._get_nix_font_path Shell Injection Vulnerability
Pygments FontManager.getnixfontpath version 1.2.2-2.0.2 suffers from a shell injection vulnerability. Shell Injection in Pygments FontManager.getnixfontpath Product: Pygments Version: 1.2.2-2.0.2 497:fe62167596bb to 3693:655dbebddc23 Tue Nov 06 17:30:45 2007 +0000 to Aug 21, 2015. Website:...
Centreon 2.6.1 Command Injection
Centreon 2.6.1 Command Injection Vulnerability Vendor: Centreon Product web page: https://www.centreon.com Affected version: 2.6.1 CES 3.2 Summary: Centreon is the choice of some of the world's largest companies and mission-critical organizations for real-time IT performance monitoring and...
SUSE-SU-2015:1361-1 Security update for osc
This update provides osc 0.152.0 with various fixes and improvements. This security issue was fixed: - CVE-2015-0778: Shell command injection via crafted service files. bsc901643 For a comprehensive list of changes, please refer to the package's change log...
ZTE SOHO ROUTER WEB_SHELL_CMD.GCH 远程命令执行
1、漏洞概要2014 年 3 月 3 日,Rapid7 团队发布了中兴 F460 / F660 后门信息1,任何可以访问设备的用户都可以直接访问一个命令执行的 Web 界面,以 root 权限执行任意命令。上述设备在中国境内被广泛应用,俗称“电信光猫”。2.1漏洞描述ZTE 生产的 SOHO Router 的一些型号中,Web 根目录(/home/httpd )下存在 /webshellcmd.gch 文件,没有任何访问控制,可以直接执行任意系统命令。以下几点值得注意:Rapid7 于 2014 年 3 月 3 日公布此漏洞,但是根据搜索结果,此问题早在 2012...
AsHttp - Shell Command to Expose any other Command as HTTP
ashttp provide a simple way to expose any shell command by HTTP. For example, to expose top by HTTP, try : ashttp -p8080 top ; then try http://localhost:8080. Dependencies ashttp depends on hlvt100, a headless VT100 emulator. To get and compile hlvt100 : $ git clone...
Firefox 3 1 to 3 4 remote command execution vulnerability analysis-vulnerability warning-the black bar safety net
0x00 Preface Some time ago, the brother in a lot of the browser in the script-level vulnerabilities upgrade for remote command execution, almost daily all over the market on all domestic browser, which has become many people relish topic. Indeed, in today's this underlyingsecuritygrowing...
RedHat Update for setroubleshoot RHSA-2015:0729-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-125-1 : mime-support security update
Timothy D. Morgan discovered that run-mailcap, an utility to execute programs via entries in the mailcap file, is prone to shell command injection via shell meta-characters in filenames. In specific scenarios this flaw could allow an attacker to remotely execute arbitrary code. For the oldstable...