Atomix MP3 - .MP3 File Buffer Overflow

Atomix MP3 - .MP3 File Buffer Overflow // source: https://www.securityfocus.com/bid/23756/info Atomix MP3 is prone to a buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker could exploit...

CVE-2007-2320

SQL injection vulnerability in kontakt.php in Papoo 3.02 and earlier allows remote attackers to execute arbitrary SQL commands via the menuid parameter, a different vector than CVE-2005-4478...

Remote file inclusion

PHP remote file inclusion vulnerability in admin/includes/spaw/dialogs/insertlink.php in download engine Download-Engine 1.4.1 allows remote authenticated users to execute arbitrary PHP code via a URL in the spawroot parameter, a different vector than CVE-2007-2255. NOTE: this may be an issue in...

MoinMoin 1.5.x - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/23676/info MoinMoin is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

CVE-2007-2255

Multiple PHP remote file inclusion vulnerabilities in Download-Engine 1.4.3 allow remote attackers to execute arbitrary PHP code via a URL in the 1 engdir parameter to addmember.php, 2 langpath parameter to admin/enginelib/class.phpmailer.php, and the 3 spawroot parameter to...

CVE-2007-2110

CVE-2007-2110 affects Oracle Database on Windows, targeting the Core RDBMS. The vulnerability (DB03) arises from the RDBMS using a NULL DACL for the Oracle process and certain shared memory sections, enabling local users to inject threads and execute arbitrary code via OpenProcess, OpenThread, an...

CVE-2007-2102

Cross-site scripting XSS vulnerability in weblog.php in my little weblog allows remote attackers to inject arbitrary web script or HTML via the id parameter, a different vector than CVE-2006-6087...

VCDGear <= 3.56 Build 050213 (FILE) Local Code Execution Exploit

Exploit for unknown platform in category local exploits ================================================================ VCDGear include // Exec Calc.exe Scode unsigned char scode = "\xeb\x03\x59\xeb\x05\xe8\xf8\xff\xff\xff\x49\x49\x49\x49\x49\x49"...

CVE-2007-1692

The default configuration of Microsoft Windows uses the Web Proxy Autodiscovery Protocol WPAD without static WPAD entries, which might allow remote attackers to intercept web traffic by registering a proxy server using WINS or DNS, then responding to WPAD requests, as demonstrated using Internet...

Inkscape恶意URI格式串漏洞

Inkscape是一个开放原始码的向量绘图软件。 Inkscape处理恶意URI存在格式串问题，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 目前没有详细漏洞细节提供。 Ubuntu Ubuntu Linux 5.10 sparc Ubuntu Ubuntu Linux 5.10 powerpc Ubuntu Ubuntu Linux 5.10 i386 Ubuntu Ubuntu Linux 5.10 amd64 Ubuntu Ubuntu Linux 6.10 sparc Ubuntu Ubuntu Linux 6.10 powerpc Ubuntu Ubuntu Linu...

CVE-2006-7130

PHP remote file inclusion vulnerability in backend/primitives/cache/media.php in Jinzora 2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the includepath parameter, a different vector than CVE-2006-6770...

CVE-2007-1179

WebAPP before 0.9.9.5 does not properly manage e-mail addresses in certain contexts related to 1 the Recommend feature, Email Article 2 senders and 3 recipients, 4 New User Approval, 5 Edit Profiles, 6 the Newsletter Subscription form, 7 the Recommend form, and 8 sending of articles, which has...

Sql injection

Multiple SQL injection vulnerabilities in Jupiter CMS 1.1.5 allow remote attackers to execute arbitrary SQL commands via the Client-IP HTTP header and certain other HTTP headers, which set the ip variable that is used in SQL queries performed by index.php and certain other PHP scripts. NOTE: the...

CVE-2007-0971

Multiple SQL injection vulnerabilities in Jupiter CMS 1.1.5 allow remote attackers to execute arbitrary SQL commands via the Client-IP HTTP header and certain other HTTP headers, which set the ip variable that is used in SQL queries performed by index.php and certain other PHP scripts. NOTE: the...

mini-traverse.txt

Hello! Miniwebsvr 0.0.6 suffers from a directory traversal flaw. "Exploit" : http://yoursite/..%00 Attack vector seems limited as you're only able to list one level down. Cheers, Daniel Nyström, [email protected] Fredrik Wessberg, [email protected]...

SecurityVulns.com: Microsoft Visual C++ 8.0 standard library time functions invalid assertion DoS &#40;Problem 3000&#41;.

Title: Microsoft Visual C++ 8.0 standard library time functions invalid assertion DoS Problem 3000. Product: Visual Studio 2005 Vendor: Microsoft Vulnerability class: Denial of Service Remote: application dependant, remote vector is possible CVE: CVE-2007-0842 Author: 3APA3A,...

Miniwebsvr 0.0.6 - Directory traversal

Hello! Miniwebsvr 0.0.6 suffers from a directory traversal flaw. "Exploit" : http://yoursite/..00 Attack vector seems limited as you're only able to list one level down. Cheers, Daniel Nystrom, [email protected] Fredrik Wessberg, [email protected]...

CVE-2007-0889

Kiwi CatTools before 3.2.0 beta uses weak encryption "reversible encoding" for passwords, account names, and IP addresses in kiwidb-cattools.kdb, which might allow local users to gain sensitive information by decrypting the file. NOTE: this issue could be leveraged with a directory traversal...

Tagit! Tagit2b 2.1.B Build 2 - &#039;/tagmin/manageTagmins.php?configpath&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/22518/info TagIt! TagBoard is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; other...

Internet Explorer VML integer overflow

Added: 02/07/2007 CVE: CVE-2007-0024 BID: 21930 OSVDB: 31250 Background Vector Markup Language VML is an XML-based format for vector graphics. Problem An integer overflow vulnerability in vgx.dll when processing VML elements in a web page allows arbitrary command execution. Resolution Apply the...