allow software vulnerabilities
vulnerabilities.aspcode.net
Searching allow software vulnerabilities
IRIX and AIX automountd services (autofsd) allo
automountd
|
services
|
IRIX
|
AIX
|
IRIX and AIX automountd services (autofsd) allow remote users to execute root commands.
Buffer overflow in AIX libDtSvc library can all
libDtSvc
|
overflow
|
library
|
Buffer
|
access
|
local
|
users
|
allow
|
gain
|
root
|
AIX
|
can
|
Buffer overflow in AIX libDtSvc library can allow local users to gain root access.
Some filters or firewalls allow fragmented SYN
implemented
|
fragmented
|
firewalls
|
violation
|
reserved
|
packets
|
filters
|
policy
|
their
|
allow
|
Some
|
bits
|
SYN
|
Some filters or firewalls allow fragmented SYN packets with IP reserved bits in violation of their implemented policy.
The Java Web Server would allow remote users to
programs
|
remote
|
obtain
|
source
|
Server
|
allow
|
users
|
would
|
code
|
Java
|
CGI
|
Web
|
The Java Web Server would allow remote users to obtain the source code for CGI programs.
In some NT web servers, appending a space at th
appending
|
attackers
|
servers
|
active
|
source
|
pages
|
allow
|
space
|
read
|
some
|
code
|
end
|
web
|
may
|
URL
|
In some NT web servers, appending a space at the end of a URL may allow attackers to read source code for active pages.
In Sun Solaris and SunOS, man and catman contai
vulnerabilities
|
overwriting
|
arbitrary
|
contain
|
Solaris
|
catman
|
files
|
allow
|
SunOS
|
man
|
Sun
|
In Sun Solaris and SunOS, man and catman contain vulnerabilities that allow overwriting arbitrary files.
In some instances of SSH 1.2.27 and 2.0.11 on L
instances
|
some
|
SSH
|
In some instances of SSH 1.2.27 and 2.0.11 on Linux systems, SSH will allow users with expired accounts to login.
Linux 2.2.3 and earlier allow a remote attacker
Linux
|
Linux 2.2.3 and earlier allow a remote attacker to perform an IP fragmentation attack, causing a denial of service.
The Webcom CGI Guestbook programs wguest.exe an
"template"
|
wguestexe
|
rguestexe
|
arbitrary
|
parameter
|
Guestbook
|
attacker
|
programs
|
Webcom
|
remote
|
using
|
files
|
allow
|
read
|
CGI
|
The Webcom CGI Guestbook programs wguest.exe and rguest.exe allow a remote attacker to read arbitrary files using the "template" parameter.
A mail server is explicitly configured to allow
explicitly
|
configured
|
spammers
|
allows
|
server
|
which
|
relay
|
allow
|
abuse
|
mail
|
SMTP
|
A mail server is explicitly configured to allow SMTP mail relay, which allows abuse by spammers.
A router's configuration service or management
configuration
|
management
|
interface
|
router's
|
service
|
A router's configuration service or management interface (such as a web server or telnet) is configured to allow connections from arbitrary hosts.
A Windows NT system does not clear the system p
information
|
sensitive
|
shutdown
|
recorded
|
Windows
|
during
|
system
|
might
|
allow
|
which
|
clear
|
does
|
file
|
page
|
not
|
A Windows NT system does not clear the system page file during shutdown, which might allow sensitive information to be recorded.
The default permissions for UnixWare /var/mail
permissions
|
/var/mail
|
UnixWare
|
default
|
modify
|
users'
|
other
|
local
|
allow
|
users
|
mail
|
read
|
The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail.
UnixWare pkg commands such as pkginfo, pkgcat,
permission
|
arbitrary
|
pkgparam
|
UnixWare
|
commands
|
dacread
|
pkginfo
|
pkgcat
|
files
|
users
|
allow
|
local
|
such
|
read
|
pkg
|
via
|
UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission.
The default permissions for Endymion MailMan al
permissions
|
Endymion
|
MailMan
|
default
|
modify
|
email
|
files
|
local
|
allow
|
users
|
read
|
The default permissions for Endymion MailMan allow local users to read email or modify files.
IBM WebSphere sets permissions that allow a loc
deinstallation
|
permissions
|
WebSphere
|
/usr/bin
|
modify
|
stored
|
script
|
allow
|
files
|
local
|
user
|
data
|
sets
|
IBM
|
its
|
IBM WebSphere sets permissions that allow a local user to modify a deinstallation script or its data files stored in /usr/bin.
Buffer overflows in CDROM Confidence Test progr
Confidence
|
overflows
|
program
|
Buffer
|
CDROM
|
Test
|
Buffer overflows in CDROM Confidence Test program (cdrom) allow local users to gain root privileges.
mknod in Linux 2.2 follows symbolic links, whic
privileges
|
overwrite
|
symbolic
|
follows
|
local
|
users
|
files
|
allow
|
Linux
|
mknod
|
links
|
could
|
which
|
gain
|
mknod in Linux 2.2 follows symbolic links, which could allow local users to overwrite files or gain privileges.
(1) acledit and (2) aclput in AIX 4.3 allow loc
(1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink attack.
ProFTPD 1.2.9 treats the Allow and Deny directi
ProFTPD
|
ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allow FTP clients to bypass intended access restrictions.
Software vulnerabilities results 1 to 20 of 4489
Page:
1
2
3
4
5
...
225
►