file software vulnerabilities
vulnerabilities.aspcode.net
Searching file software vulnerabilities
php.cgi allows attackers to read any file on th
attackers
|
system
|
phpcgi
|
allows
|
file
|
read
|
any
|
php.cgi allows attackers to read any file on the system.
An SSH server allows authentication through the
authentication
|
through
|
rhosts
|
server
|
allows
|
file
|
SSH
|
An SSH server allows authentication through the .rhosts file.
rpc.mountd on Linux, Ultrix, and possibly other
attempting
|
existence
|
determine
|
attackers
|
different
|
generates
|
depending
|
operating
|
rpcmountd
|
possibly
|
messages
|
systems
|
whether
|
remote
|
Ultrix
|
allows
|
exists
|
server
|
error
|
mount
|
other
|
Linux
|
which
|
file
|
not
|
rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not.
Quake 2 server 3.13 on Linux does not properly
server
|
Quake
|
Quake 2 server 3.13 on Linux does not properly check file permissions for the config.cfg configuration file, which allows local users to read arbitrary files via a symlink from config.cfg to the target file.
The file transfer component of AOL Instant Mess
component
|
Messenger
|
transfer
|
Instant
|
file
|
AOL
|
The file transfer component of AOL Instant Messenger (AIM) reveals the physical path of the transferred file to the remote recipient.
Microsoft Internet Information Server (IIS) 4.0
Information
|
Microsoft
|
Internet
|
Server
|
Microsoft Internet Information Server (IIS) 4.0 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions, which could allow remote attackers to modify the log file contents while IIS is running.
Norton Internet Security 2001 opens log files w
Security
|
Internet
|
Norton
|
Norton Internet Security 2001 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions, which could allow remote attackers to modify the log file contents while Norton Internet Security is running.
ACDSee 4.0 allows remote attackers to cause a d
attackers
|
service
|
denial
|
ACDSee
|
allows
|
remote
|
cause
|
ACDSee 4.0 allows remote attackers to cause a denial of service (crash) via an .ais file with a long file description field, which is not properly handled when the file properties of the file are viewed.
Aquonics File Manager 1.5 allows users with edi
userlistcgi
|
privileges
|
accounts
|
Aquonics
|
editing
|
Manager
|
modify
|
allows
|
users
|
File
|
edit
|
user
|
Aquonics File Manager 1.5 allows users with edit privileges to modify user accounts by editing the userlist.cgi file.
PHP file inclusion vulnerability in osCommerce
include_oncephp
|
vulnerability
|
include_file
|
osCommerce
|
arbitrary
|
inclusion
|
parameter
|
commands
|
execute
|
file
|
PHP
|
via
|
PHP file inclusion vulnerability in osCommerce 2.1 execute arbitrary commands via the include_file parameter to include_once.php.
Unknown "file disclosure" vulnerability in Macr
vulnerability
|
disclosure"
|
Macromedia
|
related
|
jrunini
|
Unknown
|
impact
|
"file
|
file
|
JRun
|
log
|
Unknown "file disclosure" vulnerability in Macromedia JRun 3.0, 3.1, and 4.0, related to a log file or jrun.ini, with unknown impact.
The execve system call in Linux 2.4.x records t
descriptors
|
executable
|
descriptor
|
restricted
|
process
|
calling
|
records
|
system
|
execve
|
allows
|
access
|
users
|
local
|
Linux
|
table
|
which
|
call
|
read
|
file
|
gain
|
24x
|
The execve system call in Linux 2.4.x records the file descriptor of the executable process in the file table of the calling process, which allows local users to gain read access to restricted file descriptors.
PeopleSoft PeopleTools 8.1x, 8.2x, and 8.4x all
insufficiently
|
PeopleTools
|
PeopleSoft
|
uploading
|
arbitrary
|
attackers
|
guessing
|
commands
|
Servlet
|
IClient
|
execute
|
allows
|
random
|
remote
|
file
|
81x
|
84x
|
82x
|
PeopleSoft PeopleTools 8.1x, 8.2x, and 8.4x allows remote attackers to execute arbitrary commands by uploading a file to the IClient Servlet, guessing the insufficiently random (system time) name of the directory used to store the file, and directly requesting that file.
lppasswd in CUPS 1.1.22 ignores write errors wh
lppasswd
|
CUPS
|
lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors.
The getItemInfoByAtom function in the ActiveX c
getItemInfoByAtom
|
existence
|
determine
|
attackers
|
Microsoft
|
function
|
returns
|
ActiveX
|
Windows
|
control
|
exists
|
allows
|
remote
|
system
|
Player
|
Media
|
local
|
files
|
which
|
exist
|
size
|
does
|
file
|
not
|
The getItemInfoByAtom function in the ActiveX control for Microsoft Windows Media Player 9.0 returns a 0 if the file does not exist and the size of the file if the file exists, which allows remote attackers to determine the existence of files on the local system.
The WAV file property handler in Windows XP SP1
attackers
|
property
|
Windows
|
handler
|
service
|
remote
|
allows
|
denial
|
cause
|
file
|
WAV
|
SP1
|
The WAV file property handler in Windows XP SP1 allows remote attackers to cause a denial of service (infinite loop in Explorer) via a WAV file with an invalid file header whose fmt chunk length is set to 0xFFFFFFFF.
Opera Web Browser 7.0 through 7.23 allows remot
Browser
|
through
|
Opera
|
Web
|
Opera Web Browser 7.0 through 7.23 allows remote attackers to trick users into executing a malicious file by embedding a CLSID in the file name, which causes the malicious file to appear as a trusted file type, aka "File Download Extension Spoofing."
Firefox before 1.0.1 and Mozilla before 1.7.6 a
Firefox
|
before
|
Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious web sites to overwrite arbitrary files by tricking the user into downloading a .LNK (link) file twice, which overwrites the file that was referenced in the first .LNK file.
Race condition in JFS2 on AIX 5.2 and 5.3, when
information
|
occurring
|
different
|
sensitive
|
condition
|
deleting
|
write
|
which
|
could
|
still
|
while
|
Race
|
leak
|
file
|
data
|
JFS2
|
AIX
|
may
|
I/O
|
Race condition in JFS2 on AIX 5.2 and 5.3, when deleting a file while I/O is still occurring for that file, may write data to a different file, which could leak sensitive information.
The MS-Expand file handling in Clam AntiVirus (
AntiVirus
|
MS-Expand
|
handling
|
file
|
Clam
|
The MS-Expand file handling in Clam AntiVirus (ClamAV) before 0.86 allows remote attackers to cause a denial of service (file descriptor and memory consumption) via a crafted file that causes repeated errors in the cli_msexpand function.
Software vulnerabilities results 1 to 20 of 4263
Page:
1
2
3
4
5
...
214
►