Searching manager software vulnerabilities

Palm Pilot HotSync Manager 3.0.4 in Windows 98

HotSync | Manager | Pilot | Palm |

Palm Pilot HotSync Manager 3.0.4 in Windows 98 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string to port 14238 while the manager is in network mode.


When a new SQL Server is registered in Enterpri

registered | Enterprise | encryption | Microsoft | password" | password | "Always | Manager | Server | option | prompt | login | store | uses | weak | then | name | SQL | new | not | set |

When a new SQL Server is registered in Enterprise Manager for Microsoft SQL Server 7.0 and the "Always prompt for login name and password" option is not set, then the Enterprise Manager uses weak encryption to store the login ID and password.


Account Manager LITE does not properly authenti

administrator | authenticate | privileges | amadminpl | attackers | parameter | setpasswd | password | properly | directly | attempts | calling | Account | Manager | change | script | remote | allows | which | does | LITE | gain | not |

Account Manager LITE does not properly authenticate attempts to change the administrator password, which allows remote attackers to gain privileges for the Account Manager by directly calling the amadmin.pl script with the setpasswd parameter.


Vulnerability in HP Process Resource Manager (P

Vulnerability | Resource | Manager | Process |

Vulnerability in HP Process Resource Manager (PRM) C.01.08.2 and earlier, as used by HP-UX Workload Manager (WLM), allows local users to gain root privileges via modified libraries or environment variables.


Unknown vulnerability in NetInfo Manager applic

vulnerability | application | Manager | Unknown | NetInfo | Mac |

Unknown vulnerability in NetInfo Manager application in Mac OS X 10.2.2 allows local users to access restricted parts of a filesystem.


Web Shop Manager 1.1 allows remote attackers to

metacharacters | attackers | arbitrary | commands | execute | Manager | search | remote | allows | shell | Shop | box | via | Web |

Web Shop Manager 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the search box.


Aquonics File Manager 1.5 allows users with edi

userlistcgi | privileges | accounts | Aquonics | editing | Manager | modify | allows | users | File | edit | user |

Aquonics File Manager 1.5 allows users with edit privileges to modify user accounts by editing the userlist.cgi file.


X Display Manager (XDM) on Solaris 8 allows rem

Manager | Display |

X Display Manager (XDM) on Solaris 8 allows remote attackers to cause a denial of service (XDM crash) via an invalid X Display Manager Control Protocol (XDMCP) request.


Unknown vulnerability in HP Process Resource Ma

vulnerability | Resource | Manager | Unknown | Process |

Unknown vulnerability in HP Process Resource Manager (PRM) C.02.01[.01] and earlier, as used by HP-UX Workload Manager (WLM), allows local users to corrupt data files.


phpMyFAQ 1.4.0 allows remote attackers to acces

phpMyFAQ |

phpMyFAQ 1.4.0 allows remote attackers to access the Image Manager to upload or delete images without authorization via a direct request.


Unspecified vulnerability in IBM Tivoli SecureW

Configuration | vulnerability | Unspecified | e-business | Automated | SecureWay | Identity | Machines | Director | Solution | Manager | Teller | Tivoli | Policy | Access | IBM |

Unspecified vulnerability in IBM Tivoli SecureWay Policy Director 3.8, Access Manager for e-business 3.9 to 5.1, Access Manager Identity Manager Solution 5.1, Configuration Manager 4.2, Configuration Manager for Automated Teller Machines 2.1.0, and IBM WebSphere Everyplace Server, Service Provider Offering for Multi-platforms 2.1.3 to 2.15 allow remote attackers to hijack sessions of authenticated users via unknown attack vectors involving certain cookies, aka "Potential Credential Impersonation Attack."


Backup Manager (backup-manager) before 0.5.8 cr

Manager | Backup |

Backup Manager (backup-manager) before 0.5.8 creates backup files with world-readable default permissions, which allows local users to obtain sensitive information.


netman.dll in Microsoft Windows Connections Man

Connections | Microsoft | netmandll | Library | service | Windows | Manager | denial | allows | cause | local | users |

netman.dll in Microsoft Windows Connections Manager Library allows local users to cause a denial of service (Network Connections Service crash) via a large integer argument to a particular function, aka "Network Connection Manager Vulnerability."


Multiple unspecified vulnerabilities in the web

vulnerabilities | JP1/Cm2/Network | Cm2/Network | unspecified | function | Multiple | Manager | utility | Hitachi | before | Node | web |

Multiple unspecified vulnerabilities in the web utility function in Hitachi Cm2/Network Node Manager and JP1/Cm2/Network Node Manager before Friday, September 30, 2005 allow attackers to execute arbitrary commands, disable services, and "exploit vulnerabilities."


The manager server in Symantec Enterprise Secur

Enterprise | Security | Symantec | manager | server |

The manager server in Symantec Enterprise Security Manager (ESM) 6 and 6.5.x allows remote attackers to cause a denial of service (hang) via a malformed ESM agent request.


PHP remote file inclusion vulnerability in mana

manager/tools/link/dbinstallphp | vulnerability | inclusion | remote | Plume | file | CMS | PHP |

PHP remote file inclusion vulnerability in manager/tools/link/dbinstall.php in Plume CMS 1.1.3 allows remote attackers to execute arbitrary PHP code via a URL in the _PX_config[manager_path] parameter.


** DISPUTED ** Multiple cross-site scripting (

cross-site | scripting | DISPUTED | Multiple |

** DISPUTED ** Multiple cross-site scripting (XSS) vulnerabilities in the Admin Control Panel (AdminCP) in Jelsoft vBulletin 3.6.4 allow remote authenticated administrators to inject arbitrary web script or HTML via unspecified vectors related to the (1) User Group Manager, (2) User Rank Manager, (3) User Title Manager, (4) BB Code Manager, (5) Attachment Manager, (6) Calendar Manager, and (7) Forums & Moderators functions. NOTE: the vendor disputes this issue, stating that modifying HTML is an intended privilege of an administrator. NOTE: it is possible that this issue overlaps CVE-2006-6040.


Unspecified vulnerability in Hitachi JP1/HiComm

authentication | JP1/HiCommand | DeviceManager | vulnerability | Availability | Replication | Unspecified | information | vectors | Storage | Monitor | Hitachi | Manager | obtain | Global | Tiered | Tuning | allows | local | users | Link | via |

Unspecified vulnerability in Hitachi JP1/HiCommand DeviceManager, Global Link Availability Manager, Replication Monitor, Tiered Storage Manager, and Tuning Manager allows local users to obtain authentication information via unspecified vectors.


Cross-site scripting (XSS) vulnerability in the

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in the Hitachi JP1/HiCommand Device Manager, Tiered Storage Manager, Replication Monitor, and GlobalLink Availability Manager before Monday, May 28, 2007 allows remote attackers to inject arbitrary web script or HTML via the Expect HTTP header.


NetSupport Manager Client before 10.20.0004 all

NetSupport | Manager | before | Client |

NetSupport Manager Client before 10.20.0004 allows remote attackers to bypass the (1) basic and (2) authentication schemes by spoofing the NetSupport Manager.


Software vulnerabilities results 1 to 20 of 479     
Page: 12345...24