foreign software vulnerabilities
vulnerabilities.aspcode.net
Searching foreign software vulnerabilities
BEA Weblogic Express and Server 8.0 through 8.1
Weblogic
|
foreign
|
Message
|
Service
|
through
|
Express
|
Server
|
using
|
Java
|
BEA
|
BEA Weblogic Express and Server 8.0 through 8.1 SP 1, when using a foreign Java Message Service (JMS) provider, echoes the password for the foreign provider to the console and stores it in cleartext in config.xml, which could allow attackers to obtain the password.
Race condition in SuSE Linux 8.1 through 9.2, w
unauthorized
|
condition
|
"foreign
|
through
|
systems
|
memory
|
pages"
|
allow
|
could
|
local
|
Linux
|
users
|
read
|
have
|
SuSE
|
Race
|
than
|
more
|
4GB
|
SMP
|
run
|
Race condition in SuSE Linux 8.1 through 9.2, when run on SMP systems that have more than 4GB of memory, could allow local users to read unauthorized memory from "foreign memory pages."
Format string vulnerability in the foreign_opti
foreign_option
|
vulnerability
|
dhcp-option
|
specifiers
|
arbitrary
|
optionsc
|
function
|
clients
|
execute
|
OpenVPN
|
command
|
option
|
allows
|
string
|
Format
|
remote
|
code
|
push
|
via
|
20x
|
Format string vulnerability in the foreign_option function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option.
The Foreign Function Interface (ffi) extension
Interface
|
Function
|
Foreign
|
The Foreign Function Interface (ffi) extension in PHP 5.0.5 does not follow safe_mode restrictions, which allows context-dependent attackers to execute arbitrary code by loading an arbitrary DLL and calling a function, as demonstrated by kernel32.dll and the WinExec function. NOTE: this issue does not cross privilege boundaries in most contexts, so perhaps it should not be included in CVE.
Software vulnerabilities results 1 to 5 of 5
Page:
1