9461 matches found
bslist.cgi Email Address Variable Arbitrary Command Execution
Binary data 1645.prm...
bsguest.cgi Guestbook Email Address Variable Arbitrary Command Execution
Binary data 1644.prm...
MyBB < 1.1.1 Multiple Script Variable Overwrite
Binary data 3519.prm...
AWStats < 6.6 migrate Variable Command Execution
Binary data 3536.prm...
xss in moodle (post.php)
+--------------------------------+ | | | XSS in Moodle 1.3 post.php | | | +--------------------------------+ Autor: Javier Ubilla Brenni javierubillaatspymac.com Date: 02/08/04 Software Description: "Moodle is a course management system CMS - a software package designed to help educators create...
Apache Httpd < 2.0.51 : Environment variable expansion flaw
A buffer overflow was found in the expansion of environment variables during configuration file parsing. This issue could allow a local user to gain the privileges of a httpd child if a server can be forced to parse a carefully crafted .htaccess file written by a local user...
Mandrake Linux Security Advisory : webmin (MDKSA-2001:059)
Recently, Caldera found that when webmin starts a system daemon from the web frontend it does not clear its environment variables. Since these variables contain the authorization of the administrator, any daemon would also get these variables. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
FreeBSD : lbreakout2 vulnerability in environment variable handling (87)
The following package needs to be updated: lbreakout2 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkgad4f6ca4672011d89fb5000a95bc6fae.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...
Global variable settings
This plugin configures miscellaneous global variables for Nessus plugins. It does not perform any security checks but may disable or change the behavior of others. TRUSTED...
[ GLSA 200405-18 ] Buffer Overflow in Firebird
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200405-18 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - -...
DSA-506 neon - buffer overflow
Bulletin has no description...
CVE-2004-0428
Unknown vulnerability in CoreFoundation in Mac OS X 10.3.3 and Mac OS X 10.3.3 Server, related to "the handling of an environment variable," has unknown attack vectors and unknown impact...
[waraxe-2004-SA#024 - XSS and full path disclosure in Network Query Tool 1.6]
================================================================================ waraxe-2004-SA024 ================================================================================ XSS and full path disclosure in Network Query Tool 1.6...
[SCSA-028] Nuked-Klan Multiple Vulnerabilities
================================================= Security Corporation Security Advisory SCSA-028 Nuked-Klan Multiple Vulnerabilities ================================================= PROGRAM: Nuked-KlaN HOMEPAGE: http://www.nuked-klan.org VULNERABLE VERSIONS: b1.4, b1.5, SP2 RISK: MEDIUM/HIGH...
CVE-2003-1033
The 1 instdbmsrv and 2 instlserver programs in SAP DB Development Tools 7.x trust the user-provided INSTROOT environment variable as a path when assigning setuid permissions to the lserver program, which allows local users to gain root privileges via a modified INSTROOT that points to a malicious...
CVE-2004-0158
Buffer overflow in lbreakout2 allows local users to gain 'games' group privileges via a large HOME environment variable to 1 editor.c, 2 theme.c, 3 manager.c, 4 config.c, 5 game.c, 6 levels.c, or 7 main.c...
CVE-2004-0158
Buffer overflow in lbreakout2 allows local users to gain 'games' group privileges via a large HOME environment variable to 1 editor.c, 2 theme.c, 3 manager.c, 4 config.c, 5 game.c, 6 levels.c, or 7 main.c...
CVE-2004-1853
Buffer overflow in Terminator 3: War of the Machines 1.0 allows remote attackers to cause a denial of service via a long ServerInfo variable...
CVE-2004-0158
Buffer overflow in lbreakout2 allows local users to gain 'games' group privileges via a large HOME environment variable to 1 editor.c, 2 theme.c, 3 manager.c, 4 config.c, 5 game.c, 6 levels.c, or 7 main.c...
CVE-2004-0158
Buffer overflow in lbreakout2 allows local users to gain 'games' group privileges via a large HOME environment variable to 1 editor.c, 2 theme.c, 3 manager.c, 4 config.c, 5 game.c, 6 levels.c, or 7 main.c...