allowing software vulnerabilities
vulnerabilities.aspcode.net
Searching allowing software vulnerabilities
MS Site Server 2.0 with IIS 4 can allow users t
including
|
commands
|
remotely
|
allowing
|
content
|
execute
|
target
|
Server
|
upload
|
allow
|
users
|
thus
|
Site
|
them
|
can
|
IIS
|
web
|
ASP
|
MS Site Server 2.0 with IIS 4 can allow users to upload content, including ASP, to the target web site, thus allowing them to execute commands remotely.
Microsoft Access 97 stores a database password
plaintext
|
Microsoft
|
password
|
allowing
|
database
|
foreign
|
Access
|
stores
|
data
|
mdb
|
Microsoft Access 97 stores a database password as plaintext in a foreign mdb, allowing access to data.
Several startup scripts in SCO OpenServer Enter
Enterprise
|
OpenServer
|
vulnerable
|
S84rpcinit
|
including
|
allowing
|
Several
|
startup
|
scripts
|
symlink
|
access
|
attack
|
S89nfs
|
System
|
S95nis
|
S85tcp
|
local
|
gain
|
root
|
504p
|
user
|
SCO
|
Several startup scripts in SCO OpenServer Enterprise System v 5.0.4p, including S84rpcinit, S95nis, S85tcp, and S89nfs, are vulnerable to a symlink attack, allowing a local user to gain root access.
XFree86 xfs command is vulnerable to a symlink
directories
|
vulnerable
|
restricted
|
privileges
|
possibly
|
allowing
|
service
|
XFree86
|
symlink
|
command
|
denial
|
attack
|
create
|
local
|
cause
|
files
|
users
|
them
|
gain
|
xfs
|
XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.
suidperl in Linux Perl does not check the nosui
mountable
|
allowing
|
suidperl
|
placing
|
systems
|
option
|
access
|
setuid
|
CD-ROM
|
floppy
|
system
|
nosuid
|
script
|
users
|
mount
|
check
|
Linux
|
local
|
does
|
Perl
|
gain
|
file
|
root
|
disk
|
not
|
suidperl in Linux Perl does not check the nosuid mount option on file systems, allowing local users to gain root access by placing a setuid script in a mountable file system, e.g. a CD-ROM or floppy disk.
Internet Explorer 5.0 allows window spoofing, a
information
|
legitimate
|
allowing
|
attacker
|
spoofing
|
Explorer
|
Internet
|
capture
|
client
|
window
|
allows
|
remote
|
spoof
|
site
|
web
|
Internet Explorer 5.0 allows window spoofing, allowing a remote attacker to spoof a legitimate web site and capture information from the client.
A weak encryption algorithm is used for passwor
TermVision
|
encryption
|
passwords
|
decrypted
|
algorithm
|
allowing
|
easily
|
local
|
used
|
user
|
them
|
weak
|
SCO
|
A weak encryption algorithm is used for passwords in SCO TermVision, allowing them to be easily decrypted by a local user.
TFTP is not running in a restricted directory,
information
|
restricted
|
directory
|
sensitive
|
attacker
|
allowing
|
password
|
running
|
access
|
remote
|
files
|
TFTP
|
such
|
not
|
TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files.
A WWW server is not running in a restricted fil
system-critical
|
restricted
|
allowing
|
through
|
running
|
server
|
access
|
chroot
|
system
|
data
|
file
|
thus
|
not
|
A WWW server is not running in a restricted file system, e.g. through a chroot, thus allowing access to system-critical data.
A network intrusion detection system (IDS) does
detection
|
intrusion
|
network
|
system
|
A network intrusion detection system (IDS) does not properly handle packets that are sent out of order, allowing an attacker to escape detection.
Hotmail allows Javascript to be executed via th
Javascript
|
attackers
|
commands
|
allowing
|
executed
|
Hotmail
|
execute
|
account
|
remote
|
user's
|
allows
|
STYLE
|
HTML
|
via
|
tag
|
Hotmail allows Javascript to be executed via the HTML STYLE tag, allowing remote attackers to execute commands on the user's Hotmail account.
The ColdFusion CFCRYPT program for encrypting C
encryption
|
encrypting
|
ColdFusion
|
templates
|
attackers
|
allowing
|
CFCRYPT
|
decrypt
|
program
|
CFML
|
weak
|
has
|
The ColdFusion CFCRYPT program for encrypting CFML templates has weak encryption, allowing attackers to decrypt the templates.
SSH server (sshd2) before 2.0.12 does not prope
server
|
SSH
|
SSH server (sshd2) before 2.0.12 does not properly record login attempts if the connection is closed before the maximum number of tries, allowing a remote attacker to guess the password without showing up in the audit logs.
Cabletron SmartSwitch Router (SSR) 8000 firmwar
SmartSwitch
|
Cabletron
|
Router
|
Cabletron SmartSwitch Router (SSR) 8000 firmware 2.x can only handle 200 ARP requests per second allowing a denial of service attack to succeed with a flood of ARP requests exceeding that limit.
common.inc.php in phpWebLog 0.4.2 does not prop
commonincphp
|
phpWebLog
|
common.inc.php in phpWebLog 0.4.2 does not properly initialize the $CONF array, which inadvertently sets the password to a single character, allowing remote attackers to easily guess the SiteKey and gain administrative privileges to phpWebLog.
ZyXEL Prestige 642R and 642R-I routers do not f
reconfigure
|
interface
|
allowing
|
external
|
password
|
computer
|
internal
|
routers'
|
Prestige
|
someone
|
routers
|
access
|
router
|
642R-I
|
inside
|
filter
|
Telnet
|
known
|
ports
|
ZyXEL
|
642R
|
not
|
WAN
|
FTP
|
ZyXEL Prestige 642R and 642R-I routers do not filter the routers' Telnet and FTP ports on the external WAN interface from inside access, allowing someone on an internal computer to reconfigure the router, if the password is known.
Buffer overflow in the IRC module of Trillian 0
Trillian
|
overflow
|
module
|
Buffer
|
IRC
|
Buffer overflow in the IRC module of Trillian 0.725 and 0.73 allowing remote attackers to execute arbitrary code via a long DCC Chat message.
McAfee VirusScan 4.5.1 does not drop SYSTEM pri
VirusScan
|
McAfee
|
McAfee VirusScan 4.5.1 does not drop SYSTEM privileges before allowing users to browse for files via the "System Scan" properties of the System Tray applet, which could allow local users to gain privileges.
includes/common.php in RunCMS 1.2 and earlier c
includes/commonphp
|
EXTR_OVERWRITE
|
attackers
|
variables
|
execution
|
arbitrary
|
overwrite
|
function
|
possibly
|
allowing
|
extract
|
earlier
|
RunCMS
|
allows
|
remote
|
which
|
calls
|
code
|
POST
|
HTTP
|
includes/common.php in RunCMS 1.2 and earlier calls the extract function with EXTR_OVERWRITE on HTTP POST variables, which allows remote attackers to overwrite arbitrary variables, possibly allowing execution of arbitrary code.
SSH Tectia Server 5.0.0 (A, F, and T), when all
Server
|
Tectia
|
SSH
|
SSH Tectia Server 5.0.0 (A, F, and T), when allowing host-based authentication only, allows users to log in with the wrong credentials.
Software vulnerabilities results 1 to 20 of 31
Page:
1
2
►