2147 matches found
Python-wrapper Untrusted Search Path / Code Execution
python-wrapper untrusted search path/code execution vulnerability Python-wrapper executes any test.py script within the current working directory, when supplied with help'modules'. A non-priviledged user may gain code execution by tricking root to help'modules' or help and then modules from withi...
python-wrapper - Untrusted Search Path/Code Execution
python-wrapper untrusted search path/code execution vulnerability Python-wrapper executes any test.py script within the current working directory, when supplied with help'modules'. A non-priviledged user may gain code execution by tricking root to help'modules' or help and then modules from withi...
python-wrapper untrusted search path/code execution
Exploit for python platform in category local exploits Exploit Title: python-wrapper untrusted search path/code execution vulnerability Date: 06-30-12 Exploit Author: ShadowHatesYou Vendor Homepage: python.org Software Link: http://python.org/download/ Version: Python 2.7.3 and earlier Tested on:...
SuSE 10 Security Update : PHP5 (ZYPP Patch Number 8133)
PHP5 was updated with incremental fixes to the previous update : - Additional unsafe cgi wrapper scripts are also fixed now. CVE-2012-2335 - Even more commandline option handling is filtered, which could lead to crashes of the php interpreter. CVE-2012-2336 %NASLMINLEVEL 70300 C Tenable Network...
Fedora Update for stunnel FEDORA-2011-11717
Check for the Version of stunnel OpenVAS Vulnerability Test Fedora Update for stunnel FEDORA-2011-11717 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
FreeBSD : chromium -- multiple vulnerabilities (99aef698-66ed-11e1-8288-00262d5ed8ee)
Google Chrome Releases reports : 105867 High CVE-2011-3031: Use-after-free in v8 element wrapper. Credit to Chamal de Silva. 108037 High CVE-2011-3032: Use-after-free in SVG value handling. Credit to Arthur Gerkis. 108406 115471 High CVE-2011-3033: Buffer overflow in the Skia drawing library...
Google Chrome 17.0.963.65之前版本存在多个安全漏洞
CVE-2011-3031 CVE-2011-3032 CVE-2011-3033 CVE-2011-3034 CVE-2011-3035 CVE-2011-3036 CVE-2011-3037 CVE-2011-3038 CVE-2011-3039 CVE-2011-3040 CVE-2011-3041 CVE-2011-3042 CVE-2011-3043 CVE-2011-3044 Google Chrome是一款开源的WEB浏览器。 Google Chrome存在多个安全漏洞,允许恶意用户利用漏洞进行跨站脚本,绕过安全限制,执行任意代码等攻击。 1v8 element...
foomatic-filters: User-assisted execution of arbitrary code
Background The foomatic-filters package contains wrapper scripts which are designed to be used with Foomatic. Description The foomatic-rip filter improperly handles command-line arguments, including those issued by FoomaticRIPCommandLine fields in PPD files. Impact A remote attacker could entice ...
Design/Logic Flaw
Use-after-free vulnerability in the element wrapper in Google V8, as used in Google Chrome before 17.0.963.65, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...
CVE-2011-3031
Use-after-free vulnerability in the element wrapper in Google V8, as used in Google Chrome before 17.0.963.65, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...
CVE-2011-3031
Removed by vendor...
Google Chrome < 17.0.963.65 Multiple Vulnerabilities
Binary data 6341.pasl...
FreeBSD Ports: kdelibs
The remote host is missing an update to the system as announced in the referenced advisory. VID 6d21a287-fce0-11e0-a828-00235a5f2c9a OpenVAS Vulnerability Test $ Description: Auto generated from VID 6d21a287-fce0-11e0-a828-00235a5f2c9a Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
Debian: Security Advisory (DSA-2364-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 2364-1 (xorg)
The remote host is missing an update to xorg announced via advisory DSA 2364-1. OpenVAS Vulnerability Test $Id: deb23641.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2364-1 xorg Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
php security update
CentOS Errata and Security Advisory CESA-2012:0033 Updated php packages that fix several security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base...
php: DoS when using HTTP proxy with the FTP wrapper
Unspecified vulnerability in the Streams component in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service application crash by accessing an ftp:// URL during use of an HTTP proxy with the FTP wrapper...
DSA-2364-1 xorg - incorrect permission check
Bulletin has no description...
CVE-2011-4613
The X.Org X wrapper xserver-wrapper.c in Debian GNU/Linux and Ubuntu Linux does not properly verify the TTY of a user who is starting X, which allows local users to bypass intended access restrictions by associating stdin with a file that is misinterpreted as the console TTY...
CVE-2011-3365
The KDE SSL Wrapper KSSL API in KDE SC 4.6.0 through 4.7.1, and possibly earlier versions, does not use a certain font when rendering certificate fields in a security dialog, which allows remote attackers to spoof the common name CN of a certificate via rich text...