522 matches found
CVE-2010-2239
Red Hat libvirt, possibly 0.6.0 through 0.8.2, creates new images without setting the user-defined backing-store format, which allows guest OS users to read arbitrary files on the host OS via unspecified vectors...
It's Time For a New Privacy Model
The current raft of stories about privacy problems on Facebook and other high-profile sites is leading to a renewed consideration in some circles of whether there’s a need for tighter government regulation of sites’ privacy policies and user notifications. Regulation, experts say, may be the only...
SA-CONTRIB-2010-022 - Internationalization - Arbitrary code execution
The Internationalization module enables translation of user defined strings using Drupal's locale interface. Some of these user defined strings have Input formats associated with them. As translators can translate texts before they go through the Input filters, using some filters like the PHP...
MySQL CREATE FUNCTION init_syms Buffer Overflow (CVE-2005-2558)
MySQL is an open-source implementation of a relational database management system. MySQL supports the SQL Structured Query Language database query language. To extend the functionality of SQL, MySQL provides a mechanism to call C/C++ functions in external binary libraries. This mechanism is known...
MySQL CREATE FUNCTION Table Arbitrary Library Injection (CVE-2005-0710)
MySQL is an open-source implementation of a relational database management system supporting the SQL Structured Query Language database query language. MySQL allows users to create user-defined functions UDF through the CREATE FUNCTION command. A vulnerability exists in the user-defined function...
MySQL CREATE FUNCTION libc Arbitrary Code Execution (CVE-2005-0709)
MySQL is an open-source implementation of a database system supporting the SQL Structured Query Language database query language. MySQL implements a CREATE FUNCTION command that enables a user to create a user-defined function UDF. There exists a vulnerability in the CREATE FUNCTION command of...
Fedora Update for xfce4-places-plugin FEDORA-2007-4368
Check for the Version of xfce4-places-plugin OpenVAS Vulnerability Test Fedora Update for xfce4-places-plugin FEDORA-2007-4368 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/o...
Fedora Update for xfce4-places-plugin FEDORA-2007-4385
Check for the Version of xfce4-places-plugin OpenVAS Vulnerability Test Fedora Update for xfce4-places-plugin FEDORA-2007-4385 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/o...
Debian Security Advisory DSA 1694-1 (xterm)
The remote host is missing an update to xterm announced via advisory DSA 1694-1. OpenVAS Vulnerability Test $Id: deb16941.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1694-1 xterm Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
Debian: Security Advisory (DSA-1694-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DSA-1694-1 xterm - remote code execution
Bulletin has no description...
Fedora 9 : libHX-1.23-1.fc9 / pam_mount-0.47-1.fc9 (2008-7976)
A security flaw in the pammount's handling of user defined volumes using the 'luserconf' option has been fixed in this update. The vulnerability allowed users to arbitrarily mount filesystems at arbitrary locations. More details about this vulnerability can be found in the announcement message se...
Debian: Security Advisory (DSA-831-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Vulnerability in core server (CVE-2007-6600)
Two vulnerabilities in how ANALYZE executes user defined functions that are part of expression indexes allows users to gain superuser privileges. A valid login that has permissions to create functions and tables is required to exploit this vulnearbility...
MySQL 4.x/5.0 User-Defined Function Local Privilege Escalation Exploit
No description provided by source. / $Id: raptorudf2.c,v 1.1 2006/01/18 17:58:54 raptor Exp $ raptorudf2.c - dynamic library for dosystem MySQL UDF Copyright c 2006 Marco Ivaldi [email protected] This is an helper dynamic library for local privilege escalation through MySQL run with root...
[SECURITY] Fedora 8 Update: xfce4-places-plugin-1.0.0-2.fc8
A menu with quick access to folders, documents, and removable media. The Places plugin brings much of the functionality of GNOME=E2=80=99s Places me nu to Xfce. It puts a simple button on the panel. Clicking on this button opens up a menu with 4 sections: 1 System-defined directories home folder,...
[SECURITY] Fedora 7 Update: xfce4-places-plugin-1.0.0-2.fc7
A menu with quick access to folders, documents, and removable media. The Places plugin brings much of the functionality of GNOME=E2=80=99s Places me nu to Xfce. It puts a simple button on the panel. Clicking on this button opens up a menu with 4 sections: 1 System-defined directories home folder,...
MySQL 4.x/5.0 User-Defined Function Command Execution Exploit (win)
No description provided by source. -- raptorwinudf.sql - A MySQL UDF backdoor kit for Windows -- Copyright c 2007 Marco Ivaldi [email protected] -- -- This is a MySQL backdoor kit for Windows based on the UDFs User Defined -- Functions mechanism. Use it to spawn a reverse shell netcat UDF on...
MySQL 4.x5.0 (Windows) - User-Defined Function Command Execution
MySQL 4.x5.0 Windows - User-Defined Function Command Execution -- raptorwinudf.sql - A MySQL UDF backdoor kit for Windows -- Copyright c 2007 Marco Ivaldi -- -- This is a MySQL backdoor kit for Windows based on the UDFs User Defined -- Functions mechanism. Use it to spawn a reverse shell netcat U...
Citrix Metaframe privilege escalation
Weak permissions for registry key allow user defined DLL to be attacjed to system level process...