2 matches found
pRESTd SQL注入漏洞
pRESTd is an interface to prest open source. A SQL injection vulnerability exists in versions prior to pRESTd 2.0.0-rc3, which stems from insufficient input validation and is vulnerable to SQL injection attacks...
PT-2011-4187 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.1-rc3 Description: The issue is related to the befs follow link function in fs/befs/linuxvfs.c, which does not validate the length attribute of long symlinks. This allows local users to cause a denial of servi...