SUSE CVE-2007-5135

Off-by-one error in the SSLgetsharedciphers function in OpenSSL 0.9.7 up to 0.9.7l, and 0.9.8 up to 0.9.8f, might allow remote attackers to execute arbitrary code via a crafted packet that triggers a one-byte buffer underflow. NOTE: this issue was introduced as a result of a fix for CVE-2006-3738...

Vesta Control Panel Input Validation Error Vulnerability

Vesta Control Panel VestaCP is an open source web hosting control panel. A security vulnerability exists in Vesta Control Panel 0.9.8-26 and earlier versions. A remote attacker can exploit this vulnerability to execute arbitrary commands on the system with the help of the cron jobs module...

Vesta Control Panel Operating System Command Injection Vulnerability

Vesta Control Panel VestaCP is an open source web hosting control panel. An operating system command injection vulnerability exists in Vesta Control Panel VestaCP versions 0.9.8-26 and earlier, which can be exploited by an attacker to inject commands and execute code with the help of specially...

phpLDAPadmin Local File Inclusion Vulnerability

phpLDAPadmin is a web-based LDAP client which is mainly used to manage LDAP servers. A local file inclusion vulnerability exists in the way the 'Accept-Language' HTTP header value is handled in versions of phpLDAPadmin prior to 0.9.8, which can be exploited by a remote attacker to cause a denial ...