EUVD-2004-0472

Malware in sbrugna...

[SECURITY] [DSA 5945-1] konsole security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5945-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 20, 2025 https://www.debian.org/security/faq -...

CVE-2011-1961

The telnet URI handler in Microsoft Internet Explorer 6 through 9 does not properly launch the handler application, which allows remote attackers to execute arbitrary programs via a crafted web site, aka "Telnet Handler Remote Code Execution Vulnerability."...

Microsoft Internet Explorer Telnet URI处理器远程代码执行漏洞

Bugtraq ID: 49027 CVE ID：CVE-2011-1961 Microsoft Internet Explorer是一款流行的WEB浏览器。 Microsoft Internet Explorer使用的telnet URI协议处理器存在一个远程代码执行漏洞，攻击者构建一个WEB页，诱使用户解析，可以登录用户上下文执行任意代码。 Microsoft Internet Explorer 9 Microsoft Internet Explorer 8 Microsoft Internet Explorer 7.0 Microsoft Internet Explorer 6.0...

Microsoft Internet Explorer Telnet URI Handler Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a vulnerability that lets attackers execute arbitrary remote code. An attacker can exploit this issue by enticing a legitimate user to use a vulnerable version of the application to access an HTML file from a network share location that contains...

Debian Security Advisory DSA 518-1 (kdelibs)

The remote host is missing an update to kdelibs announced via advisory DSA 518-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later...

CVE-2007-4041

Multiple argument injection vulnerabilities in Mozilla Firefox 2.0.0.5 and 3.0alpha allow remote attackers to execute arbitrary commands via a NULL byte %00 and shell metacharacters in a 1 mailto, 2 nntp, 3 news, 4 snews, or 5 telnet URI, a similar issue to CVE-2007-3670...

CVE-2007-4041

CVE-2007-4041 describes multiple argument injection vulnerabilities in Mozilla Firefox 2.0.0.5 and Firefox 3.0alpha that allow remote attackers to execute arbitrary commands via a NULL byte (%00) and shell metacharacters in certain URI handlers (mailto, nntp, news, snews, telnet). The issue is a ...

CVE-2006-6597

Argument injection vulnerability in HyperAccess 8.4 allows user-assisted remote attackers to execute arbitrary vbscript and commands via the /r option in a telnet:// URI, which is configured to use hawin32.exe...

CVE-2006-6597

CVE-2006-6597 affects HyperAccess 8.4. An argument-injection vulnerability lets user-assisted remote attackers run arbitrary vbscript and commands via the /r option in a telnet:// URI configured to use hawin32.exe. The NVD entry assigns a CVSSv2 base score of 6.8 (Network, Medium complexity, no a...

PT-2006-7199 · Hyperaccess · Hyperaccess

Name of the Vulnerable Software and Affected Versions: HyperAccess version 8.4 Description: The issue allows user-assisted remote attackers to execute arbitrary vbscript and commands. This is achieved via the /r option in a telnet:// URI, which is configured to use hawin32.exe. Recommendations: F...

Van Dyke SecureCRT < 4.1.9 Telnet URI Remote Command Execution

Binary data 2427.prm...

GLSA-200405-19 : Opera telnet URI handler file creation/truncation vulnerability

The remote host is affected by the vulnerability described in GLSA-200405-19 Opera telnet URI handler file creation/truncation vulnerability The telnet URI handler in Opera does not check for leading '-' characters in the host name. Consequently, a maliciously-crafted telnet:// link may be able t...

CVE-2004-0473

Argument injection vulnerability in Opera before 7.50 does not properly filter "-" characters that begin a hostname in a telnet URI, which allows remote attackers to insert options to the resulting command line and overwrite arbitrary files via 1 the "-f" option on Windows XP or 2 the "-n" option...

RHEL 2.1 / 3 : kdelibs (RHSA-2004:222)

Updated kdelibs packages that fix telnet URI handler and mailto URI handler file vulnerabilities are now available. The kdelibs packages include libraries for the K Desktop Environment. KDE Libraries include: kdecore KDE core library, kdeui user interface, kfm file manager, khtmlw HTML widget, ki...

[SECURITY] [DSA 518-1] New kdelibs packages fix URI handler vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 518-1 [email protected] http://www.debian.org/security/ Martin Schulze June 14th, 2004 http://www.debian.org/security/faq -...

DSA-518 kdelibs - unsanitised input

Bulletin has no description...

Opera telnet URI handler file creation/truncation vulnerability

Background Opera is a multi-platform web browser. Description The telnet URI handler in Opera does not check for leading '-' characters in the host name. Consequently, a maliciously-crafted telnet:// link may be able to pass options to the telnet program itself. One example would be the following...

CVE-2004-0473

Argument injection vulnerability in Opera before 7.50 does not properly filter "-" characters that begin a hostname in a telnet URI, which allows remote attackers to insert options to the resulting command line and overwrite arbitrary files via 1 the "-f" option on Windows XP or 2 the "-n" option...

CVE-2004-0473

Opera before 7.50 has an argument injection in its telnet URI handler: leading '-' in the telnet host name is not filtered, allowing remote attackers to pass options to the telnet program and overwrite files. The Gentoo GLSA and related advisories describe two concrete outcomes: creation or trunc...