SSH2 3.0 Restricted Shell Escaping Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4547/info SSH and derivatives is the protocol Secure Shell protocol implementation. It is available for various operating systems, although this vulnerability affects operating systems such as Unix and Linux. It has been...

Microsoft IIS WebDAV Write Access Code Execution

No description provided by source. $Id: iiswebdavuploadasp.rb 10397 2010-09-20 15:59:46Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms...

Samsung Galaxy S2 World Writeable Directories

Note: I really don't know much about how one writes up vulnerabilities and exploits. I just wanted to root my phone, and found the following apparently previously unknown vulnerabilities. I reported them to Samsung two weeks ago. Affected devices: Vulnerabilities verified on Samsung Galaxy S2 for...

Microsoft IIS - WebDAV Write Access Code Execution (Metasploit)

$Id: iiswebdavuploadasp.rb 10397 2010-09-20 15:59:46Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

SuSE9 Security Update : permissions (YOU Patch Number 10815)

It is technically impossible to change permissions files in of world writeable directories that don't have the sticky bit set in a secure way. This update therefore removes /var/lib/xmcd/discog from /etc/permissions. Furthermore permissions handling of files below /var/games is removed. To be abl...

Debian: Security Advisory (DSA-1086-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 1086-1] New xmcd packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 1086-1 [email protected] http://www.debian.org/security/ Martin Schulze June 2nd, 2006 http://www.debian.org/security/faq -...

SUSE-SA:2005:062: permissions

The remote host is missing the patch for the advisory SUSE-SA:2005:062 permissions. SUSE LINUX ships with three pre defined sets of permissions, 'easy', 'secure' and 'paranoid'. The chkstat program contained in the permissions package is used to set those permissions to the chosen level. Level...

GLSA-200410-10 : gettext: Insecure temporary file handling

The remote host is affected by the vulnerability described in GLSA-200410-10 gettext: Insecure temporary file handling gettext insecurely creates temporary files in world-writeable directories with predictable names. Impact : A local attacker could create symbolic links in the temporary files...

SSH2 3.0 - Restricted Shell Escape (Command Execution)

source: https://www.securityfocus.com/bid/4547/info SSH and derivatives is the protocol Secure Shell protocol implementation. It is available for various operating systems, although this vulnerability affects operating systems such as Unix and Linux. It has been reported that it is possible for a...

SSH2 3.0 - Restricted Shell Escape (Command Execution)

SSH2 3.0 - Restricted Shell Escape Command Execution source: https://www.securityfocus.com/bid/4547/info SSH and derivatives is the protocol Secure Shell protocol implementation. It is available for various operating systems, although this vulnerability affects operating systems such as Unix and...