Searching instead software vulnerabilities

IIS 3.0 with the iis-fix hotfix installed allow

installed | intruders | programs | instead | iis-fix | source | allows | hotfix | remote | using | read | code | IIS | %2e | ASP |

IIS 3.0 with the iis-fix hotfix installed allows remote intruders to read source code for ASP programs by using a %2e instead of a . (dot) in the URL.


FlowPoint DSL router firmware versions prior to

FlowPoint | firmware | versions | router | prior | DSL |

FlowPoint DSL router firmware versions prior to 3.0.8 allows a remote attacker to exploit a password recovery feature from the network and conduct brute force password guessing, instead of limiting the feature to the serial console port.


The Protected Store in Windows 2000 does not pr

Protected | Windows | Store |

The Protected Store in Windows 2000 does not properly select the strongest encryption when available, which causes it to use a default of 40-bit encryption instead of 56-bit DES encryption, aka the "Protected Store Key Length" vulnerability.


PHP-Nuke 5.2 allows remote attackers to copy an

casefilemanagerphp | attackers | arbitrary | $PHP_SELF | variable | argument | adminphp | PHP-Nuke | calling | instead | allows | called | appear | remote | delete | files | being | which | makes | user | sets | copy |

PHP-Nuke 5.2 allows remote attackers to copy and delete arbitrary files by calling case.filemanager.php with admin.php as an argument, which sets the $PHP_SELF variable and makes it appear that case.filemanager.php is being called by admin.php instead of the user.


CITRIX Metaframe 1.8 logs the Client Address (I

Metaframe | Address | Client | CITRIX | logs |

CITRIX Metaframe 1.8 logs the Client Address (IP address) that is provided by the client instead of obtaining it from the packet headers, which allows clients to spoof their public IP address, e.g. through Network Address Translation (NAT).


Trend Micro InterScan AppletTrap 2.0 does not p

AppletTrap | InterScan | modified | properly | certain | filter | Trend | Micro | such | ways | does | URLs | they | not |

Trend Micro InterScan AppletTrap 2.0 does not properly filter URLs when they are modified in certain ways such as (1) using a double slash (//) instead of a single slash, (2) URL-encoded characters, (3) requesting the IP address instead of the domain name, or (4) using a leading 0 in an octet of an IP address.


qpopper 4.01 with PAM based authentication on R

qpopper |

qpopper 4.01 with PAM based authentication on Red Hat systems generates different error messages when an invalid username is provided instead of a valid name, which allows remote attackers to determine valid usernames on the system.


send_message.php in AeroMail before 1.45 allows

send_messagephp | AeroMail | before |

send_message.php in AeroMail before 1.45 allows remote attackers to read arbitrary files on the server, instead of just uploaded files, via an attachment that modifies the filename to be uploaded.


Anthill allows remote attackers to bypass authe

authentication | enterbugphp | postbugphp | attackers | accessing | directly | program | reports | Anthill | instead | allows | bypass | remote | file | bug |

Anthill allows remote attackers to bypass authentication and file bug reports by directly accessing the postbug.php program instead of enterbug.php.


The Apache configuration file (httpd.conf) in O

configuration | Apache | file |

The Apache configuration file (httpd.conf) in Oracle 9i Application Server (9iAS) uses a Location alias for /perl directory instead of a ScriptAlias, which allows remote attackers to read the source code of arbitrary CGI files via a URL containing the /perl directory instead of /cgi-bin.


NETGEAR FM114P allows remote attackers to bypas

restrictions | hostnmame | attackers | NETGEAR | address | instead | access | FM114P | allows | bypass | remote | sites | uses | web | via | URL |

NETGEAR FM114P allows remote attackers to bypass access restrictions for web sites via a URL that uses the the IP address instead of the hostnmame.


Finjan Software SurfinGate 6.0 and 6.0 1 allows

restrictions | SurfinGate | attackers | hostname | Software | instead | address | access | allows | remote | Finjan | bypass | URL | via |

Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions via a URL with an IP address instead of a hostname.


SonicWall Content Filtering allows local users

prohibited | SonicWall | Filtering | requests | Content | instead | address | domain | site's | allows | access | users | sites | local | name | web | via |

SonicWall Content Filtering allows local users to access prohibited web sites via requests to the web site's IP address instead of the domain name.


Sun ONE Application Server 7.0 for Windows 2000

Application | attackers | uppercase | extension | lowercase | instead | request | 2000/XP | Windows | source | allows | Server | remote | obtain | "JSP" | code | uses | ONE | Sun | via | JSP |

Sun ONE Application Server 7.0 for Windows 2000/XP allows remote attackers to obtain JSP source code via a request that uses the uppercase ".JSP" extension instead of the lowercase .jsp extension.


Microsoft SQL Server before Windows 2000 SP4 al

Microsoft | Windows | before | Server | SQL |

Microsoft SQL Server before Windows 2000 SP4 allows local users to gain privileges as the SQL Server user by calling the xp_fileexist extended stored procedure with a named pipe as an argument instead of a normal file.


Sun Java 1.3.1, 1.4.1, and 1.4.2 allows local u

Java | Sun |

Sun Java 1.3.1, 1.4.1, and 1.4.2 allows local users to cause a denial of service (JVM crash), possibly by calling the ClassDepth function with a null parameter, which causes a crash instead of generating a null pointer exception.


Unrestricted file upload vulnerability in the A

Administration | administrators | authenticated | vulnerability | Unrestricted | arbitrary | NewsPHP | instead | execute | upload | allows | remote | video | files | Panel | code | file |

Unrestricted file upload vulnerability in the Administration Panel for NewsPHP allows remote authenticated administrators to upload and execute arbitrary code instead of video files.


Musicmatch 10.00.2047 and earlier store log fil

Musicmatch |

Musicmatch 10.00.2047 and earlier store log files in the Program Files directory instead of the user profile, which may allow local users to obtain sensitive information.


The "reset password" feature in Macromedia Bree

Macromedia | passwords | attackers | plaintext | password" | database | instead | feature | access | allows | "reset | stores | Breeze | obtain | which | hash |

The "reset password" feature in Macromedia Breeze 5.0 stores passwords in plaintext in the database instead of the hash, which allows attackers with access to the database to obtain the passwords.


The AdminAPI of ColdFusion MX 7 allows attacker

authentication | "programmatic | Administrator | ColdFusion | attackers | AdminAPI | access" | instead | allows | bypass | using |

The AdminAPI of ColdFusion MX 7 allows attackers to bypass authentication by using "programmatic access" to the adminAPI instead of the ColdFusion Administrator.


Software vulnerabilities results 1 to 20 of 115     
Page: 123456