60 matches found
libarchive: Undefined behavior / invalid shiftleft in TAR parser
Undefined behavior invalid left shift was discovered in libarchive, in how Compress streams are identified. This could cause certain files to be mistakenly identified as Compress archives and fail to read...
subversion: svn_repos_trace_node_locations() reveals paths hidden by authz
It was found that when an SVN server both svnserve and httpd with the moddavsvn module searched the history of a file or a directory, it would disclose its location in the repository if that file or directory was not readable for example, if it had been moved...
IP. Board <= 3.4.7 SQL Injection analysis-vulnerability warning-the black bar safety net
IPB stands for Invision Power Board is a PHP Development Forum program, foreign used more widely. In its 3. 4. 7 version and the previous presence of a SQL injection vulnerability, this article to its analysis. poc link http://seclists.org/fulldisclosure/2014/Nov/20 !/ usr/bin/env python Sunday,...
X.Org libXfont bitmap/bdfread.c Null Pointer Reference Denial of Service Vulnerability
X.Org is an official reference implementation of the X Window System operated by the X.Org Foundation and is open source free software. libXfont is an X font handling library for servers and utilities. A security vulnerability in the 'bdfReadCharacters' function in the bitmap/bdfread.c file in...
MS15-014: Vulnerability in Group Policy Could Allow Security Feature Bypass (3004361)
The version of Windows running on the remote host is affected by a security downgrade vulnerability that affects workstations and servers configured to use Group Policy. A man-in-the-middle attacker, via modified domain controller responses sent to targeted systems, can cause the policy file to...
HackerOne: Markdown code block sequence makes report unreadable
Proof of Concept Submitting a report/comment with an input like the following "Three backticks followed by a newline followed by -ddd/d" will cause the report to be unreadable I think it's because the parser is crashing? The attached file includes the input that I'm trying with difficulty to...
MS-DOS: CRITICAL BUG!
CRITICAL BUG! If you type in color followed by a space and 2 numbers it can potentially render the screen unreadable! So far, my extensive testing has led me to find that certain letters work as well, though without a real pattern I'm not sure which ones. So far I know the letters "AF" will rende...
Design/Logic Flaw
The SMB2 implementation in Samba 3.6.x before 3.6.6, as used on the IBM Storwize V7000 Unified 1.3 before 1.3.2.3 and 1.4 before 1.4.0.1 and possibly other products, does not properly enforce CIFS share attributes, which allows remote authenticated users to 1 write to a read-only share; 2 trigger...
CVE-2013-0454
The SMB2 implementation in Samba 3.6.x before 3.6.6, as used on the IBM Storwize V7000 Unified 1.3 before 1.3.2.3 and 1.4 before 1.4.0.1 and possibly other products, does not properly enforce CIFS share attributes, which allows remote authenticated users to 1 write to a read-only share; 2 trigger...
UBUNTU-CVE-2012-3357
The SVN revision view lib/vclib/svn/svnrepos.py in ViewVC before 1.1.15 does not properly handle log messages when a readable path is copied from an unreadable path, which allows remote attackers to obtain sensitive information, related to a "log msg leak."...
Debian DSA-2251-1 : subversion - several vulnerabilities
Several vulnerabilities were discovered in Subversion, the version control system. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2011-1752 The moddavsvn Apache HTTPD server module can be crashed though when asked to deliver baselined WebDAV resources. ...
Acritum Femitter Server v1.03 Multiple Vulnerabilities
Exploit for windows platform in category remote exploits ====================================================== Acritum Femitter Server v1.03 Multiple Vulnerabilities ====================================================== --= Tested on: XP sp 2 Acritum Femitter Server v1.03 is a HTTP and FTP Serv...
Mandriva Update for gdm MDVA-2010:133 (gdm)
Check for the Version of gdm OpenVAS Vulnerability Test Mandriva Update for gdm MDVA-2010:133 gdm Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...
core-dumping unreadable binaries via PT_INTERP
Linux kernel 2.6.x before 2.6.20 allows local users to read unreadable binaries by using the interpreter PTINTERP functionality and triggering a core dump, a variant of CVE-2004-1073...
core-dumping unreadable binaries via PT_INTERP
Linux kernel 2.6.x before 2.6.20 allows local users to read unreadable binaries by using the interpreter PTINTERP functionality and triggering a core dump, a variant of CVE-2004-1073...
CVE-2007-0958
Linux kernel 2.6.x before 2.6.20 allows local users to read unreadable binaries by using the interpreter PTINTERP functionality and triggering a core dump, a variant of CVE-2004-1073...
CVE-2007-0958
Linux kernel 2.6.x before 2.6.20 allows local users to read unreadable binaries by using the interpreter PTINTERP functionality and triggering a core dump, a variant of CVE-2004-1073...
Subversion Module unreadeable path information disclosure
You are running a version of Subversion which is older than 1.0.8 or 1.1.0-rc4. A flaw exist in older version, in the apache module modauthzsvn, which fails to properly restrict access to metadata within unreadable paths. An attacker can read metadata in unreadable paths, which can contain...
DEBIAN-CVE-2004-0749
The modauthzsvn module in Subversion 1.0.7 and earlier does not properly restrict access to all metadata on unreadable paths, which could allow remote attackers to gain sensitive information via 1 svn log -v, 2 svn propget, or 3 svn blame, and other commands that follow renames...
Security update 1970-01-01
...