Searching obtain software vulnerabilities

Various vulnerabilities in the AIX portmir comm

vulnerabilities | portmir | command | Various | obtain | access | allows | local | users | root | AIX |

Various vulnerabilities in the AIX portmir command allows local users to obtain root access.


A hidden SNMP community string in HP OpenView a

information | attackers | community | sensitive | OpenView | modify | obtain | tables | string | hidden | allows | remote | SNMP | MIB |

A hidden SNMP community string in HP OpenView allows remote attackers to modify MIB tables and obtain sensitive information.


The Java Web Server would allow remote users to

programs | remote | obtain | source | Server | allow | users | would | code | Java | CGI | Web |

The Java Web Server would allow remote users to obtain the source code for CGI programs.


ptylogin in Unix systems allows users to perfor

passwords | ptylogin | perform | service | locking | systems | modems | obtain | denial | allows | modem | users | Unix | dial | out |

ptylogin in Unix systems allows users to perform a denial of service by locking out modems, dial out with that modem, or obtain passwords.


Digital Unix Networker program nsralist has a b

Networker | privilege | nsralist | overflow | Digital | program | allows | obtain | buffer | users | local | which | root | Unix | has |

Digital Unix Networker program nsralist has a buffer overflow which allows local users to obtain root privilege.


Netopia Timbuktu Pro sends user IDs and passwor

passwords | cleartext | attackers | Timbuktu | sniffing | Netopia | allows | obtain | remote | sends | which | them | user | Pro | via | IDs |

Netopia Timbuktu Pro sends user IDs and passwords in cleartext, which allows remote attackers to obtain them via sniffing.


Ceilidh allows remote attackers to obtain the r

translated_path | attackers | directory | Ceilidh | hidden | remote | allows | obtain | field | form | real | path | via |

Ceilidh allows remote attackers to obtain the real path of the Ceilidh directory via the translated_path hidden form field.


Shambala Server 4.5 stores passwords in plainte

compromise | passwords | plaintext | Shambala | obtain | stores | Server | users | local | which | could | allow |

Shambala Server 4.5 stores passwords in plaintext, which could allow local users to obtain the passwords and compromise the server.


Allaire JRun 2.3 server allows remote attackers

executable | attackers | SSIFilter | directly | content | Allaire | servlet | calling | remote | allows | server | source | obtain | JRun | code |

Allaire JRun 2.3 server allows remote attackers to obtain source code for executable content by directly calling the SSIFilter servlet.


Muscat Empower CGI program allows remote attack

attackers | parameter | pathname | absolute | invalid | request | Empower | program | server | Muscat | allows | obtain | remote | CGI | via |

Muscat Empower CGI program allows remote attackers to obtain the absolute pathname of the server via an invalid request in the DB parameter.


FaSTream FTP++ Server 2.0 allows remote attacke

attackers | FaSTream | pathname | command | obtain | Server | allows | remote | "pwd" | FTP++ | real | via |

FaSTream FTP++ Server 2.0 allows remote attackers to obtain the real pathname of the server via the "pwd" command.


easyNews 1.5 and earlier stores adminstration p

adminstration | settingsphp | passwords | cleartext | easyNews | earlier | allows | obtain | stores | access | users | which | local | gain |

easyNews 1.5 and earlier stores adminstration passwords in cleartext in settings.php, which allows local users to obtain the passwords and gain access.


userinfo.php in XOOPS 1.0 RC1 allows remote att

information | userinfophp | sensitive | parameter | injection | attackers | allows | attack | obtain | remote | "uid" | XOOPS | via | SQL | RC1 |

userinfo.php in XOOPS 1.0 RC1 allows remote attackers to obtain sensitive information via a SQL injection attack in the "uid" parameter.


Vignette StoryServer and Vignette V/5 allows re

StoryServer | information | /vgn/style | attackers | sensitive | template | Vignette | request | remote | allows | obtain | V/5 | via |

Vignette StoryServer and Vignette V/5 allows remote attackers to obtain sensitive information via a request for the /vgn/style template.


Mailman before 2.1.5 allows remote attackers to

Mailman | before |

Mailman before 2.1.5 allows remote attackers to obtain user passwords via a crafted email request to the Mailman server.


Gallery 1.4.3 and earlier allows remote attacke

Gallery |

Gallery 1.4.3 and earlier allows remote attackers to bypass authentication and obtain Gallery administrator privileges.


Trend ScanMail allows remote attackers to obtai

information | potentially | anti-virus | capability | smencynsf | sensitive | attackers | ScanMail | disable | allows | obtain | remote | Trend | file | via |

Trend ScanMail allows remote attackers to obtain potentially sensitive information or disable the anti-virus capability via the smency.nsf file.


Invision NetSupport School Pro uses a weak encr

encryption | NetSupport | passwords | algorithm | Invision | encrypt | obtain | allows | School | users | which | local | weak | uses | Pro |

Invision NetSupport School Pro uses a weak encryption algorithm to encrypt passwords, which allows local users to obtain passwords.


McFreeScan.CoMcFreeScan.1 ActiveX object in Mca

GetSpecialFolderLocation | McFreeScanCoMcFreeScan1 | information | parameters | attackers | sensitive | function | FreeScan | ActiveX | certain | object | allows | remote | obtain | Mcafee | via |

McFreeScan.CoMcFreeScan.1 ActiveX object in Mcafee FreeScan allows remote attackers to obtain sensitive information via the GetSpecialFolderLocation function with certain parameters.


PimenGest2 before 1.1.1 allows remote attackers

PimenGest2 | before |

PimenGest2 before 1.1.1 allows remote attackers to obtain the database password via debug information in rowLatex.inc.php.


Software vulnerabilities results 1 to 20 of 1415     
Page: 12345...71