6 matches found
2×4 Security
I had someone at the house recently, talking about physical security. We have all the usual stuff like alarms and CCTV, locks on the windows and doors but the aim of the exercise was to have someone who is familiar with attacks vectors physical security in this case, but the principal applies to...
One dedecms variable coverage holes of the wretched use of the method-vulnerability warning-the black bar safety net
The most recent dedecms variable coverage holes, and finally can control the global variables, but can not completely control $GLOBALS$v1 .= $v2; Note that there is a sliding scale, is in an initialized global variable content on a sliding scale the content. It has now been disclosed the exploit...
ProFTPd 1.3.3c - Compromised Source Backdoor Remote Code Execution
== ProFTPD Compromise Report == On Sunday, the 28th of November 2010 around 20:00 UTC the main distribution server of the ProFTPD project was compromised. The attackers most likely used an unpatched security issue in the FTP daemon to gain access to the server and used their privileges to replace...
CVE-2008-4955
freevo.real in freevo 1.8.1 allows local users to overwrite arbitrary files via a symlink attack on 1 /tmp/-.pid, 2 /tmp/freevo-gdb, 3 /tmp/freevo-gdb.sh, and 4 /tmp/.stats temporary files. NOTE: this issue is only a vulnerability when a verbose debug mode is activated by modifying source code...
SquirrelMail未授权源代码修改包被入侵漏洞
BUGTRAQ ID: 26879 CNCAN ID:CNCAN-2007121804 SquirrelMail是一款流行的开放源代码的WEB MAIl程序。 SquirrelMail供应商报告源代码被入侵修改,存在很大的安全隐患,使用此不安全代码可导致以WEB权限执行任意指令。 目前没有详细漏洞细节提供。 SquirrelMail SquirrelMail 1.4.12 SquirrelMail SquirrelMail 1.4.11 升级程序: SquirrelMail SquirrelMail 1.4.11 SquirrelMail squirrelmail-1.4.13.tar....
AnyPortal(php)-0.1 Vulnerability
======================================================== AnyPortalphp-0.1 Vulnerability ======================================================== Date: 08/09/2000 Author: zorgon [email protected] Web: http://www.nightbird.free.fr Introduction -------------- Secure Reality Pty Ltd. has publishe...