interpreted software vulnerabilities
vulnerabilities.aspcode.net
Searching interpreted software vulnerabilities
rcp on various Linux systems including Red Hat
including
|
"nobody"
|
various
|
systems
|
allows
|
other
|
Linux
|
user
|
UID
|
rcp
|
Red
|
Hat
|
rcp on various Linux systems including Red Hat 4.0 allows a "nobody" user or other user with UID of 65535 to overwrite arbitrary files, since 65535 is interpreted as -1 by chown and other system calls, which causes the calls to fail to modify the ownership of the file.
aaa_base in SuSE Linux 6.3, and cron.daily in e
incorrectly
|
interpreted
|
arbitrary
|
crondaily
|
directory
|
creating
|
versions
|
aaa_base
|
earlier
|
include
|
expired
|
deletes
|
delete
|
spaces
|
allow
|
local
|
users
|
Linux
|
files
|
whose
|
which
|
names
|
/tmp
|
then
|
SuSE
|
aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitrary files by creating files whose names include spaces, which are then incorrectly interpreted by aaa_base when it deletes expired files from the /tmp directory.
POP3Lite before 0.2.4 does not properly quote a
POP3Lite
|
before
|
POP3Lite before 0.2.4 does not properly quote a . (dot) in an email message, which could allow a remote attacker to append arbitrary text to the end of an email message, which could then be interpreted by various mail clients as valid POP server responses or other input that could cause clients to crash or otherwise behave unexpectedly.
load_prefs.php and supporting include files in
load_prefsphp
|
SquirrelMail
|
supporting
|
include
|
files
|
load_prefs.php and supporting include files in SquirrelMail 1.0.4 and earlier do not properly initialize certain PHP variables, which allows remote attackers to (1) view sensitive files via the config_php and data_dir options, and (2) execute arbitrary code by using options_order.php to upload a message that could be interpreted as PHP.
Cistron RADIUS daemon (radiusd-cistron) 1.6.6 a
Cistron
|
daemon
|
RADIUS
|
Cistron RADIUS daemon (radiusd-cistron) 1.6.6 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large value in an NAS-Port attribute, which is interpreted as a negative number and causes a buffer overflow.
Multiple content security gateway and antivirus
restrictions
|
differently
|
interpreted
|
antivirus
|
attackers
|
Multiple
|
messages
|
products
|
security
|
content
|
gateway
|
clients
|
fields
|
bypass
|
remote
|
which
|
allow
|
name
|
MIME
|
mail
|
same
|
via
|
use
|
may
|
Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use multiple MIME fields with the same name, which may be interpreted differently by mail clients.
Multiple content security gateway and antivirus
restrictions
|
differently
|
interpreted
|
whitespace
|
attackers
|
antivirus
|
Multiple
|
messages
|
products
|
security
|
unusual
|
gateway
|
content
|
fashion
|
clients
|
bypass
|
remote
|
which
|
allow
|
MIME
|
mail
|
via
|
use
|
may
|
Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use whitespace in an unusual fashion, which may be interpreted differently by mail clients.
Multiple content security gateway and antivirus
Content-Transfer-Encoding
|
restrictions
|
non-standard
|
frequently
|
attackers
|
supported
|
antivirus
|
security
|
Multiple
|
messages
|
products
|
content
|
gateway
|
remote
|
bypass
|
values
|
allow
|
such
|
MIME
|
via
|
but
|
use
|
Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use non-standard but frequently supported Content-Transfer-Encoding values such as (1) uuencode, (2) mac-binhex40, and (3) yenc, which may be interpreted differently by mail clients.
Multiple content security gateway and antivirus
restrictions
|
non-standard
|
incorrectly
|
interpreted
|
differently
|
characters
|
separators
|
parameters
|
separator
|
attackers
|
antivirus
|
Multiple
|
standard
|
security
|
products
|
messages
|
content
|
headers
|
gateway
|
clients
|
fields
|
values
|
bypass
|
remote
|
within
|
which
|
allow
|
MIME
|
mail
|
use
|
via
|
may
|
Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use non-standard separator characters, or use standard separators incorrectly, within MIME headers, fields, parameters, or values, which may be interpreted differently by mail clients.
Multiple content security gateway and antivirus
restrictions
|
differently
|
interpreted
|
attackers
|
antivirus
|
encoding
|
Multiple
|
messages
|
products
|
security
|
content
|
RFC2047
|
gateway
|
clients
|
fields
|
bypass
|
remote
|
which
|
allow
|
MIME
|
mail
|
via
|
use
|
may
|
Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use fields that use RFC2047 encoding, which may be interpreted differently by mail clients.
Multiple content security gateway and antivirus
restrictions
|
interpreted
|
differently
|
attackers
|
antivirus
|
encoding
|
Multiple
|
messages
|
security
|
products
|
RFC2231
|
gateway
|
content
|
clients
|
bypass
|
remote
|
allow
|
which
|
MIME
|
mail
|
via
|
use
|
may
|
Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use RFC2231 encoding, which may be interpreted differently by mail clients.
Multiple content security gateway and antivirus
encapsulation
|
restrictions
|
interpreted
|
antivirus
|
attackers
|
Multiple
|
security
|
products
|
clients
|
comment
|
content
|
gateway
|
RFC822
|
fields
|
bypass
|
remote
|
other
|
which
|
allow
|
MIME
|
uses
|
mail
|
via
|
may
|
Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME encapsulation that uses RFC822 comment fields, which may be interpreted as other fields by mail clients.
Internet Explorer 6.x on Windows XP SP2 allows
ADODBConnection
|
ADODBrecordset
|
demonstrated
|
interpreted
|
arbitrary
|
draggable
|
attackers
|
Internet
|
document
|
Explorer
|
Windows
|
execute
|
remote
|
allows
|
Local
|
using
|
write
|
Help
|
HTML
|
Zone
|
type
|
such
|
file
|
code
|
hta
|
SP2
|
ppt
|
pdf
|
css
|
xml
|
doc
|
cdf
|
Internet Explorer 6.x on Windows XP SP2 allows remote attackers to execute arbitrary code, as demonstrated using a document with a draggable file type such as .xml, .doc, .py, .cdf, .css, .pdf, or .ppt, and using ADODB.Connection and ADODB.recordset to write to a .hta file that is interpreted in the Local Zone by HTML Help.
index.php in FlatNuke 2.5.1 allows remote attac
FlatNuke
|
indexphp
|
index.php in FlatNuke 2.5.1 allows remote attackers to create an andministrator account via carriage returns and #10 in the url_avatar field, which is interpreted as a sensitive directive.
Microsoft MSN Messenger allows remote attackers
conversation
|
interpreted
|
containing
|
Messenger
|
plaintext
|
extension
|
malicious
|
Microsoft
|
attackers
|
message
|
service
|
causes
|
remote
|
allows
|
string
|
denial
|
kicked
|
group
|
users
|
"pif"
|
cause
|
which
|
file
|
via
|
MSN
|
Microsoft MSN Messenger allows remote attackers to cause a denial of service via a plaintext message containing the ".pif" string, which is interpreted as a malicious file extension and causes users to be kicked from a group conversation. NOTE: it has been reported that Gaim is also affected, so this may be an issue in the protocol or MSN servers.
Lyris ListManager 5.0 through 8.9a allows remot
ListManager
|
characters
|
whitespace
|
attackers
|
parameter
|
through
|
columns
|
unusual
|
queries
|
orderby
|
allows
|
remote
|
"ORDER
|
Lyris
|
such
|
add
|
89a
|
BY"
|
via
|
SQL
|
Lyris ListManager 5.0 through 8.9a allows remote attackers to add "ORDER BY" columns to SQL queries via unusual whitespace characters in the orderby parameter, such as (1) newlines and (2) 0xFF (ASCII 255) characters, which are interpreted as whitespace.
The supersede_lease function in memory.c in ISC
supersede_lease
|
function
|
memoryc
|
DHCP
|
ISC
|
The supersede_lease function in memory.c in ISC DHCP (dhcpd) server 2.0pl5 allows remote attackers to cause a denial of service (application crash) via a DHCPDISCOVER packet with a 32 byte client-identifier, which causes the packet to be interpreted as a corrupt uid and causes the server to exit with "corrupt lease uid."
The VLAN Trunking Protocol (VTP) feature in Cis
Protocol
|
Trunking
|
VLAN
|
The VLAN Trunking Protocol (VTP) feature in Cisco IOS 12.1(19) and CatOS allows remote attackers to cause a denial of service by sending a VTP update with a revision value of 0x7FFFFFFF, which is incremented to 0x80000000 and is interpreted as a negative number in a signed context.
Microsoft Windows Live Messenger 8.0 and earlie
Messenger
|
emoticons
|
attackers
|
Microsoft
|
Windows
|
enabled
|
service
|
earlier
|
gestual
|
denial
|
allows
|
remote
|
cause
|
Live
|
Microsoft Windows Live Messenger 8.0 and earlier, when gestual emoticons are enabled, allows remote attackers to cause a denial of service (CPU consumption) via a long string composed of ":D" sequences, which are interpreted as emoticons.
Interpretation conflict in WinSCP before 4.0.4
Interpretation
|
conflict
|
before
|
WinSCP
|
Interpretation conflict in WinSCP before 4.0.4 allows remote attackers to perform arbitrary file transfers with a remote server via file-transfer commands in the final portion of a (1) scp, and possibly a (2) sftp or (3) ftp, URL, as demonstrated by a URL specifying login to the remote server with a username of scp, which is interpreted as an HTTP scheme name by the protocol handler in a web browser, but is interpreted as a username by WinSCP. NOTE: this is related to an incomplete fix for CVE-2006-3015.
Software vulnerabilities results 1 to 20 of 26
Page:
1
2
►