contains software vulnerabilities
vulnerabilities.aspcode.net
Searching contains software vulnerabilities
Opera 3.2.1 allows remote attackers to cause a
Opera
|
Opera 3.2.1 allows remote attackers to cause a denial of service (application crash) via a URL that contains an extra / in the http:// tag.
The installation of 1ArcServe Backup and Inocul
exchverifylog
|
installation
|
passwords
|
usernames
|
plaintext
|
1ArcServe
|
contains
|
Inoculan
|
Exchange
|
modules
|
create
|
client
|
Backup
|
which
|
file
|
log
|
The installation of 1ArcServe Backup and Inoculan AV client modules for Exchange create a log file, exchverify.log, which contains usernames and passwords in plaintext.
HTTP server for Xerox DocuColor 4 LP allows rem
attackers
|
DocuColor
|
service
|
remote
|
denial
|
server
|
allows
|
cause
|
Xerox
|
HTTP
|
HTTP server for Xerox DocuColor 4 LP allows remote attackers to cause a denial of service (hang) via a long URL that contains a large number of . characters.
Internet Explorer 4.0 allows remote attackers t
attackers
|
Explorer
|
Internet
|
service
|
denial
|
allows
|
remote
|
cause
|
Internet Explorer 4.0 allows remote attackers to cause a denial of service (crash) via HTML code that contains a long CLASSID parameter in an OBJECT tag.
Format string vulnerability in kvt in KDE 1.1.2
vulnerability
|
Format
|
string
|
KDE
|
kvt
|
Format string vulnerability in kvt in KDE 1.1.2 may allow local users to execute arbitrary commands via a DISPLAY environmental variable that contains formatting characters.
ICQ Web Front HTTPd allows remote attackers to
requesting
|
attackers
|
character
|
contains
|
service
|
denial
|
remote
|
allows
|
HTTPd
|
Front
|
cause
|
ICQ
|
Web
|
URL
|
ICQ Web Front HTTPd allows remote attackers to cause a denial of service by requesting a URL that contains a "?" character.
Felix IRC client in BeOS r5 pro and earlier all
attackers
|
contains
|
earlier
|
conduct
|
service
|
message
|
denial
|
client
|
allows
|
remote
|
Felix
|
BeOS
|
long
|
pro
|
URL
|
via
|
IRC
|
Felix IRC client in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL.
Baxter IRC client in BeOS r5 pro and earlier al
attackers
|
contains
|
earlier
|
conduct
|
message
|
service
|
Baxter
|
denial
|
client
|
allows
|
remote
|
long
|
BeOS
|
URL
|
IRC
|
pro
|
via
|
Baxter IRC client in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL.
Browser IRC client in BeOS r5 pro and earlier a
attackers
|
contains
|
conduct
|
Browser
|
message
|
service
|
earlier
|
client
|
denial
|
remote
|
allows
|
long
|
BeOS
|
pro
|
URL
|
via
|
IRC
|
Browser IRC client in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL.
PostMaster 1.0 in BeOS r5 pro and earlier allow
PostMaster
|
attackers
|
contains
|
conduct
|
message
|
service
|
earlier
|
remote
|
denial
|
allows
|
long
|
BeOS
|
URL
|
via
|
pro
|
PostMaster 1.0 in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL.
mailnews.cgi 1.3 and earlier allows remote atta
metacharacters
|
mailnewscgi
|
attackers
|
arbitrary
|
commands
|
contains
|
earlier
|
execute
|
remote
|
allows
|
shell
|
user
|
name
|
via
|
mailnews.cgi 1.3 and earlier allows remote attackers to execute arbitrary commands via a user name that contains shell metacharacters.
Digital Creations Zope 2.3.1 b1 and earlier con
Creations
|
Digital
|
Zope
|
Digital Creations Zope 2.3.1 b1 and earlier contains a problem in the method return values related to the classes (1) ObjectManager, (2) PropertyManager, and (3) PropertySheet.
xman allows local users to gain privileges by m
metacharacters
|
privileges
|
modifying
|
contains
|
filename
|
MANPATH
|
allows
|
whose
|
local
|
shell
|
users
|
point
|
xman
|
gain
|
page
|
man
|
xman allows local users to gain privileges by modifying the MANPATH to point to a man page whose filename contains shell metacharacters.
manual.php in Marcus S. Xenakis Unix Manual 1.0
metacharacters
|
attackers
|
arbitrary
|
manualphp
|
contains
|
execute
|
Xenakis
|
Marcus
|
Manual
|
allows
|
remote
|
shell
|
code
|
Unix
|
via
|
URL
|
manual.php in Marcus S. Xenakis Unix Manual 1.0 allows remote attackers to execute arbitrary code via a URL that contains shell metacharacters.
vWebServer 1.2.0 allows remote attackers to cau
vWebServer
|
vWebServer 1.2.0 allows remote attackers to cause a denial of service via a URL that contains MS-DOS device names.
Axis network camera 2120, 2110, 2100, 200+ and
network
|
camera
|
Axis
|
Axis network camera 2120, 2110, 2100, 200+ and 200 contains a default administration password "pass", which allows remote attackers to gain access to the camera.
MailWorks Professional allows remote attackers
authentication
|
Professional
|
privileges
|
MailWorks
|
attackers
|
"auth=1"
|
contains
|
"uId=1"
|
cookie
|
bypass
|
remote
|
allows
|
gain
|
via
|
MailWorks Professional allows remote attackers to bypass authentication and gain privileges via a cookie that contains "auth=1" and "uId=1."
The default installation of Horde 3.0.4 contain
installation
|
default
|
Horde
|
The default installation of Horde 3.0.4 contains an administrative account with a blank password, which allows remote attackers to gain access.
The cgi.rb CGI library for Ruby 1.8 allows remo
attackers
|
library
|
service
|
remote
|
denial
|
allows
|
cgirb
|
cause
|
Ruby
|
CGI
|
The cgi.rb CGI library for Ruby 1.8 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an HTTP request with a multipart MIME body that contains an invalid boundary specifier, as demonstrated using a specifier that begins with a "-" instead of "--" and contains an inconsistent ID.
XINE 0.99.4 allows user-assisted remote attacke
XINE
|
XINE 0.99.4 allows user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a certain M3U file that contains a long #EXTINF line and contains format string specifiers in an invalid udp:// URI, possibly a variant of CVE-2007-0017.
Software vulnerabilities results 1 to 20 of 387
Page:
1
2
3
4
5
...
20
►