4333 matches found
Check Point Smartview Tracker buffer overflow
Buffer overflow in GUI during viewing oversized column...
Check Point SmartDashboard Buffer Overflow
MegaHz Security Advisory 19/03/2004 Check Point SmartDashboard Buffer Overflow Summary =================== The Check Point Smartview Tracker which is the log viewer for Check Point Firewall-1 is suffering from buffer overflow vulnerabilities to various of its fields. Systems Affected...
CVE-2003-0273
Cross-site scripting XSS vulnerability in the web interface for Request Tracker RT 1.0 through 1.0.7 allows remote attackers to execute script via message bodies...
CVE-2003-0273
The CVE-2003-0273 entry describes a cross-site scripting (XSS) vulnerability in the web interface of Request Tracker (RT) versions 1.0 through 1.0.7, allowing remote attackers to execute script via message bodies. CVSS v2 base metrics indicate a Medium impact with Partial confidentiality, integri...
CVE-2003-0273
Cross-site scripting XSS vulnerability in the web interface for Request Tracker RT 1.0 through 1.0.7 allows remote attackers to execute script via message bodies...
[Mantis Advisory/2002-03] Bug listings of private projects can be viewed through cookie manipulation
Mantis Advisory/2002-03 Bug listings of private projects can be viewed through cookie manipulation 0. Table of Contents 1. Introduction 2. Summary / Impact analysis 3. Affected versions 4. Workaround / Solution 5. Detailed explanation 6. Contact details 1. Introduction Mantis is an Open Source...
Mantis Bug Tracker 0.15.x/0.16/0.17.x - JPGraph Remote File Inclusion Command Execution
source: https://www.securityfocus.com/bid/5504/info Mantis depends on include files to provide some functionality, such as dynamic generation of graphs. However, since Mantis does not properly validate the path to the include file, it is possible for attackers to specify an arbitrary path, either...
Mantis Bug Tracker 0.15.x0.160.17.x - JPGraph Remote File Inclusion Command Execution
Mantis Bug Tracker 0.15.x0.160.17.x - JPGraph Remote File Inclusion Command Execution source: https://www.securityfocus.com/bid/5504/info Mantis depends on include files to provide some functionality, such as dynamic generation of graphs. However, since Mantis does not properly validate the path ...
CVE-1999-1404
IBM/Tivoli OPC Tracker Agent version 2 release 1 allows remote attackers to cause a denial of service resource exhaustion via malformed data to the localtracker client port 5011, which prevents the connection from being closed properly...
CVE-1999-1404
Summary of CVE-1999-1404: IBM/Tivoli OPC Tracker Agent version 2 release 1 is affected. The vulnerability allows remote attackers to cause a denial of service (resource exhaustion) by sending malformed data to the localtracker client port (5011), preventing the connection from being closed proper...
CVE-1999-1403
The CVE-1999-1403 entry concerns IBM/Tivoli OPC Tracker Agent version 2 release 1, which creates files, directories, and IPC message queues with insecure permissions (world-readable and world-writable). This configuration could allow local users to disrupt operations and potentially gain privileg...
CVE-1999-1403
IBM/Tivoli OPC Tracker Agent version 2 release 1 creates files, directories, and IPC message queues with insecure permissions world-readable and world-writable, which could allow local users to disrupt operations and possibly gain privileges by modifying or deleting files...
CVE-1999-1404
IBM/Tivoli OPC Tracker Agent version 2 release 1 allows remote attackers to cause a denial of service resource exhaustion via malformed data to the localtracker client port 5011, which prevents the connection from being closed properly...