8202 matches found
[Update] NSFOCUS SA2000-07: Microsoft IIS 4.0/5.0 CGI File Name Inspection Vulnerability
NSFOCUS Security AdvisorySA2000-07 Topic: Microsoft IIS 4.0/5.0 CGI File Name Inspection Vulnerability Release DateЈє Nov 7th, 2000 Update DateЈє Nov 23rd, 2000 CVE Candidate Numbers: CAN-2000-0886 BUGTRAQ ID : 1912 Affected system: ================ - Microsoft IIS 4.0 - Microsoft IIS 5.0 Impact:...
HP-UX 11.0 - pppd Local Stack Buffer Overflow
HP-UX 11.0 - pppd Local Stack Buffer Overflow / Copyright c 2000 ADM / / All Rights Reserved / / THIS IS UNPUBLISHED PROPRIETARY SOURCE CODE OF ADM / / The copyright notice above does not evidence any / / actual or intended publication of such source code. / / / / Title: HP-UX pppd / / Tested...
Дырка в Apache (mod_rewrite)
При использовании modrewrite если результат RewriteRul содержит шаблоны файлов, то атакующий может обратиться к любому файлу в системе...
SuSE Linux 6.36.4 - Installed Package Disclosure
SuSE Linux 6.36.4 - Installed Package Disclosure source: https://www.securityfocus.com/bid/1707/info By submitting a specific url to the web server "http://hosts.any/doc/packages/" , any user from any host may obtain a list of packages installed on a S.u.S.E 6.3 or 6.4 system. This problem is due...
[COVERT-2000-06] Initialized Data Overflow in Xlock
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Network Associates, Inc. COVERT Labs Security Advisory May 29, 2000 Initialized Data Overflow in Xlock COVERT-2000-06 o Synopsis An implementation vulnerability in xlock allows global variables in the initialized data section of memory to be...
Linux news 25.04.00
SCALABLE VECTOR GRAPHICS SVG IN MOZILLA Язык SVG - язык описания двумерной графики. Соответствует стандартам XML, Cascading Style Sheets CSS, Document Object Model DOM, JavaScript, PNG, и JPEG. Таким образом, через Javascript вы можете, например, "привязать" вид двумерной картинки к параметрам...
Microsoft IIS perl.exe HTTP Path Disclosure
It was possible to obtain the physical location of a virtual web directory of this host by issuing a request for a non-existent file with an IISAPI-registered extension. An attacker may use this flaw to gain more information about the remote host, and hence make more focused attacks. %NASLMINLEVE...
SGI IRIX 6.4 - ioconfig Local Privilege Escalation
SGI IRIX 6.4 - ioconfig Local Privilege Escalation source: https://www.securityfocus.com/bid/213/info A vulnerability exists in the ioconfig program, as shipping with IRIX 6.4 S2MP from Silicon Graphics, Inc. This program is only available on Irix 6.4 for the Origin/Onyx2. Other machines running...
Slackware Linux 3.4 - 'liloconfig-color' Temporary File
source: https://www.securityfocus.com/bid/77/info liloconfig-color creates the file /tmp/reply insecurely and follows symbolic links. An attacker can create a symbolic link from /tmp/reply to any file and wait for root to run the program. This will clober the target file. The file created has...
PT-2014-9085 · Openbsd +10 · Openssh Sshd +11
Name of the Vulnerable Software and Affected Versions: bash versions prior to 4.3 bash-3.0 bash-3.2 bash-4.1.2 bash-4.2.45 bash-debuginfo bash-debuginfo-3.2 bash-debuginfo-4.1.2 bash-debuginfo-4.2.45 bash-debugsource bash-devel bash-doc bash-doc-4.1.2 bash-doc-4.2.45 bash-loadables...
Internet Explorer help
None None...
Security Update for Internet Explorer 5.01 Service Pack 4 (KB925486)
A security issue has been identified in the way Vector Markup Language VML is handled that could allow an attacker to compromise a computer running Microsoft Windows and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item,...
Security Update for Windows XP (KB925486)
A security issue has been identified in the way Vector Markup Language VML is handled that could allow an attacker to compromise a computer running Microsoft Windows and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item,...
Security Update for Internet Explorer 6 Service Pack 1 (KB925486)
A security issue has been identified in the way Vector Markup Language VML is handled that could allow an attacker to compromise a computer running Microsoft Windows and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item,...
Security Update for Windows XP (KB929969)
A security issue has been identified in the way Vector Markup Language VML is handled that could allow an attacker to compromise a computer running Microsoft Windows and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item,...
Security Update for Internet Explorer 5.01 Service Pack 4 (KB929969)
A security issue has been identified in the way Vector Markup Language VML is handled that could allow an attacker to compromise a computer running Microsoft Windows and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item,...
Security Update for Internet Explorer 6 Service Pack 1 (KB925486)
A security issue has been identified in the way Vector Markup Language VML is handled that could allow an attacker to compromise a computer running Microsoft Windows and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item,...
CVE-2026-46626: SymfonyRuntime CVE-2024-50340 Patch Bypass: Web Requests Can Still Set APP_ENV/APP_DEBUG via parse_str/SAPI Argv Mismatch
More info at https://symfony.com/cve-2026-46626...
Unauthenticated crypto and weak IV in Magento\Framework\Encryption
More info at http://www.openwall.com/lists/oss-security/2016/07/19/3...
Internet Explorer help
None None...