pam_krb5: Privilege escalation

Background pamkrb5 is a a Kerberos v5 PAM module. Description The following vulnerabilities were discovered: pamkrb5 does not properly initialize the Kerberos libraries for setuid use CVE-2009-0360. Derek Chan reported that calls to pamsetcred are not properly handled when running setuid...

Ubuntu Update for tomboy vulnerability USN-560-1

Ubuntu Update for Linux kernel vulnerabilities USN-560-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5601.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for tomboy vulnerability USN-560-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

LxBlog V6变量未初始化漏洞

Lxblog 是 PHPWind 开发的一套基于 PHP+MySQL 数据库平台架构的多用户博客系统，强调整站与用户个体间的交互，拥有强大的个人主页系统、独立的二级域名体系、灵活的用户模板系统、丰富的朋友圈和相册功 能。但是该blog系统在安全性上并不让人满意，本文就来分析lxblog一个变量未初始化造成的sql注入漏洞。 LxBlog V6 在数据库查询语句前面将变量$itemtype赋值为指定的数组就可以了。 =======================poc==================================...

GLSA-200903-15 : git: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200903-15 git: Multiple vulnerabilities Multiple vulnerabilities have been reported in gitweb that is part of the git package: Shell metacharacters related to gitsearch are not properly sanitized CVE-2008-5516. Shell metacharacter...

git: Multiple vulnerabilties

Background GIT - the stupid content tracker, the revision control system used by the Linux kernel team. Description Multiple vulnerabilities have been reported in gitweb that is part of the git package: Shell metacharacters related to gitsearch are not properly sanitized CVE-2008-5516. Shell...

Mandrake Security Advisory MDVSA-2009:048 (epiphany)

The remote host is missing an update to epiphany announced via advisory MDVSA-2009:048. OpenVAS Vulnerability Test $Id: mdksa2009048.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:048 epiphany Authors: Thomas Reinke Copyright: Copyright c 2009 E-Sof...

Security Best Practice: Protect Yourself from MS-RPC and DCE-RPC Vulnerabilities

DCE/RPC stands for "Distributed Computing Environment / Remote Procedure Calls". It is a Remote Procedure Call system that allows software to work across multiple computers, as if it were all working on the same computer. This system allows programmers to write distributed software without having...

Golabi CMS Remote File Inclusion Vulnerability

-------------------------------------------------------------------------------- wWw.CrazyAngel.iR - info-AT-CrazyAngel.iR -------------------------------------------------------------------------------- Golabi CMS Remote File Inclusion Vulnerability + Application Info: Name: Golabi CMS Author:...

Golabi CMS Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ============================================== Golabi CMS Remote File Inclusion Vulnerability ============================================== -------------------------------------------------------------------------------- Golabi CMS Remote...

Qwerty CMS (id) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================== Qwerty CMS id Remote SQL Injection Vulnerability ================================================== QWERTY CMS lite - SQL INJ = Injection in index.php variable: id...

Qwerty CMS - id SQL Injection

Qwerty CMS - id SQL Injection QWERTY CMS lite - SQL INJ Found: b3 from GraBBerZ.com = Injection in index.php variable: id http://site/index.php?act=publ&id=-3+UNION+SELECT+1,2,3,4,5 = Administrator Table: rkh8t5po Columns: secret873ktlW,pass459khyf Column with pass: pass459khyf Admin CP:...

Mandrake Security Advisory MDVSA-2009:046 (dia)

The remote host is missing an update to dia announced via advisory MDVSA-2009:046. OpenVAS Vulnerability Test $Id: mdksa2009046.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:046 dia Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Mandrake Security Advisory MDVSA-2009:047 (vim)

The remote host is missing an update to vim announced via advisory MDVSA-2009:047. OpenVAS Vulnerability Test $Id: mdksa2009047.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:047 vim Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Mandrake Security Advisory MDVSA-2009:047 (vim)

The remote host is missing an update to vim announced via advisory MDVSA-2009:047. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-on...

Design/Logic Flaw

systerm.c in telnetd in FreeBSD 7.0-RELEASE and other 7.x versions deletes dangerous environment variables with a method that was valid only in older FreeBSD distributions, which might allow remote attackers to execute arbitrary code by passing a crafted environment variable from a telnet client,...

Wireshark Multiple Vulnerabilities Feb-09 (Windows)

This host is installed with Wireshark and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbwiresharkmultvulnfeb09win.nasl 4970 2017-01-09 15:00:59Z teissa $ Wireshark Multiple Vulnerabilities Feb-09 Windows Authors: Sujit Ghosal Copyright: Copyright c 2009 Greenbone Network...

CVE-2009-0641

systerm.c in telnetd in FreeBSD 7.0-RELEASE and other 7.x versions deletes dangerous environment variables with a method that was valid only in older FreeBSD distributions, which might allow remote attackers to execute arbitrary code by passing a crafted environment variable from a telnet client,...

Mandrake Security Advisory MDVSA-2009:039 (gedit)

The remote host is missing an update to gedit announced via advisory MDVSA-2009:039. OpenVAS Vulnerability Test $Id: mdksa2009039.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:039 gedit Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

FreeBSD telnetd sys_term.c Environment Variable Handling Privilege Escalation (FreeBSD-SA-09:05)

A flaw in the environment-handling code used by the telnet server running on the remote host fails to scrub the environment of variables such as 'LDPRELOAD' before calling the login program. An attacker who can place an arbitrary library on the remote host, either as a local user or remotely...

FreeBSD telnetd privilege escalation

LDxxx environment variable are not cleared on 'login' execution, makeing it's possible to execute code witi root privileges. For remote exploitation it's required to have ability to upload the file to remote system via FTP, Web, etc...