onto software vulnerabilities
vulnerabilities.aspcode.net
Searching onto software vulnerabilities
Unknown vulnerability in the pam_filter mechani
vulnerability
|
pam_filter
|
mechanism
|
pam_ldap
|
version
|
Unknown
|
before
|
Unknown vulnerability in the pam_filter mechanism in pam_ldap before version 162, when LDAP based authentication is being used, allows users to bypass host-based access restrictions and log onto the system.
ArGoSoft FTP Server before 1.4.2.7 allows remot
ArGoSoft
|
Server
|
before
|
FTP
|
ArGoSoft FTP Server before 1.4.2.7 allows remote attackers to read arbitrary files by uploading a ZIP file containing a shortcut (.LNK) file, using SITE UNZIP to extract the .LNK file onto the server, then accessing the file, a different vulnerability than CVE-2005-0520.
KnowledgeTree Document Management (aka Knowledg
KnowledgeTree
|
Management
|
Document
|
KnowledgeTree Document Management (aka KnowledgeTree Open Source) before STABLE 3.3.7 does not require a password for an unregistered user, when the user exists in Active Directory, which allows remote attackers to log onto KTDMS without the intended authorization check.
The IBM Lenovo Access Support acpRunner ActiveX
acpcontrollerdll
|
distributed
|
acpRunner
|
ActiveX
|
control
|
Support
|
before
|
Lenovo
|
Access
|
IBM
|
The IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll before 1.2.8.0 and possibly acpir.dll before 1.0.0.9 (Automated Solutions 1.0 before fix pack 1), exposes unsafe methods to arbitrary web domains, which allows remote attackers to download arbitrary code onto a client system and execute this code.
The Citrix EPA ActiveX control (aka the "endpoi
ActiveX
|
control
|
Citrix
|
EPA
|
The Citrix EPA ActiveX control (aka the "endpoint checking control" or CCAOControl Object) before 4.5.0.0 in npCtxCAO.dll in Citrix Access Gateway Standard Edition before 4.5.5 and Advanced Edition before 4.5 HF1 allows remote attackers to download and execute arbitrary programs onto a client system.
Java Web Start in Sun JDK and JRE 6 Update 2 an
restrictions
|
untrusted
|
properly
|
enforce
|
earlier
|
131_20
|
142_15
|
access
|
Update
|
Start
|
does
|
Java
|
not
|
Sun
|
Web
|
JDK
|
SDK
|
JRE
|
Java Web Start in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.2_15 and earlier, and SDK and JRE 1.3.1_20 and earlier does not properly enforce access restrictions for untrusted (1) applications and (2) applets, which allows user-assisted remote attackers to copy or rename arbitrary files when local users perform drag-and-drop operations from the untrusted application or applet window onto certain types of desktop applications.
Software vulnerabilities results 1 to 7 of 7
Page:
1