Searching open exec software vulnerabilities

IIS has the #exec function enabled for Server S

function | enabled | Include | Server | #exec | Side | has | IIS |

IIS has the #exec function enabled for Server Side Include (SSI) files.


Buffer overflows in Sierra Half-Life build 1573

overflows | Half-Life | Sierra | Buffer | build |

Buffer overflows in Sierra Half-Life build 1573 and earlier allow remote attackers to execute arbitrary code via (1) a long map command, (2) a long exec command, or (3) long input in a configuration file.


Cisco CBOS 2.3.8 and earlier stores the passwor

Cisco | CBOS |

Cisco CBOS 2.3.8 and earlier stores the passwords for (1) exec and (2) enable in cleartext in the NVRAM and a configuration file, which could allow unauthorized users to obtain the passwords and gain privileges.


Standalone Macromedia Flash Player 5.0 before 5

Macromedia | Standalone | Player | before | Flash |

Standalone Macromedia Flash Player 5.0 before 5,0,30,2 allows remote attackers to execute arbitrary programs via a .SWF file containing the "exec" FSCommand.


Race condition in exec in OpenBSD 4.0 and earli

condition | OpenBSD | earlier | NetBSD | Race | exec |

Race condition in exec in OpenBSD 4.0 and earlier, NetBSD 1.5.2 and earlier, and FreeBSD 4.4 and earlier allows local users to gain privileges by attaching a debugger to a process before the kernel has determined that the process is setuid or setgid.


Vignette StoryServer 4 and 5, and Vignette V/5

Application | StoryServer | arbitrary | attackers | displayed | Vignette | variable | execute | feature | enabled | allows | remote | later | text | EXEC | code | V/5 | V/6 | via | SSI |

Vignette StoryServer 4 and 5, and Vignette V/5 and V/6, with the SSI EXEC feature enabled, allows remote attackers to execute arbitrary code via a text variable to a Vignette Application that is later displayed.


Opera 7.54 and earlier uses kfmclient exec to h

Opera |

Opera 7.54 and earlier uses kfmclient exec to handle unknown MIME types, which allows remote attackers to execute arbitrary code via a shortcut or launcher that contains an Exec entry.


The exec_dir PHP patch (php-exec-dir) 4.3.2 thr

exec_dir | patch | PHP |

The exec_dir PHP patch (php-exec-dir) 4.3.2 through 4.3.7 with safe mode disabled allows remote attackers to bypass restrictions and execute arbitrary commands via a backtick operator, which is not handled using the php_escape_shell_cmd function.


VERITAS Backup Exec Server (beserver.exe) 9.0 t

VERITAS | Server | Backup | Exec |

VERITAS Backup Exec Server (beserver.exe) 9.0 through 10.0 for Windows allows remote unauthenticated attackers to modify the registry by calling methods to the RPC interface on TCP port 6106.


Buffer overflow in the VERITAS Backup Exec Web

Administration | overflow | Console | VERITAS | Backup | Buffer | Exec | Web |

Buffer overflow in the VERITAS Backup Exec Web Administration Console (BEWAC) 9.0 4367 through 10.0 rev. 5484 allows remote attackers to execute arbitrary code.


Heap-based buffer overflow in the Admin Plus Pa

Heap-based | overflow | through | VERITAS | buffer | Backup | Option | Admin | Exec | Plus | Pack |

Heap-based buffer overflow in the Admin Plus Pack Option for VERITAS Backup Exec 9.0 through 10.0 for Windows Servers allows remote attackers to execute arbitrary code.


Unknown vulnerability in Remote Agent for Windo

vulnerability | Windows | Servers | Unknown | Remote | Agent |

Unknown vulnerability in Remote Agent for Windows Servers (RAWS) in VERITAS Backup Exec 9.0 through 10.0 for Windows, and 9.0.4019 through 9.1.307 for NetWare, allows remote attackers to gain privileges by copying the handle for the server.


Multiple heap-based and stack-based buffer over

StorageCentral | stack-based | components | heap-based | arbitrary | attackers | overflows | controls | Multiple | execute | Storage | ActiveX | certain | VERITAS | remote | Hotfix | before | server | buffer | allow | code | DCOM | Exec | Hot | Fix | via |

Multiple heap-based and stack-based buffer overflows in certain DCOM server components in VERITAS Storage Exec Storage Exec 5.3 before Hotfix 9 and StorageCentral 5.2 before Hot Fix 2 allow remote attackers to execute arbitrary code via certain ActiveX controls.


NetBSD 1.6, NetBSD 2.0 through 2.1, and NetBSD-

NetBSD-current | through | before | NetBSD |

NetBSD 1.6, NetBSD 2.0 through 2.1, and NetBSD-current before Monday, October 31, 2005 allows local users to gain privileges by attaching a debugger to a setuid/setgid (P_SUGID) process that performs an exec without a reset of real credentials.


verifiedexecioctl in verified_exec.c in NetBSD

verifiedexecioctl | verified_execc | NetBSD |

verifiedexecioctl in verified_exec.c in NetBSD 2.0.2 calls NDINIT with UIO_USERSPACE rather than UID_SYSSPACE, which removes the functionality of the verified exec kernel subsystem and might allow local users to execute Trojan horse programs.


Format string vulnerability in the Job Engine s

vulnerability | service | Engine | string | Format | Job |

Format string vulnerability in the Job Engine service (bengine.exe) in the Media Server in Veritas Backup Exec 10d (10.1) for Windows Servers rev. 5629, Backup Exec 10.0 for Windows Servers rev. 5520, Backup Exec 10.0 for Windows Servers rev. 5484, and Backup Exec 9.1 for Windows Servers rev. 4691, when the job log mode is Full Detailed (aka Full Details), allows remote authenticated users to cause a denial of service and possibly execute arbitrary code via a crafted filename on a machine that is backed up by Backup Exec.


raydium_network_netcall_exec function in networ

raydium_network_netcall_exec | revision | networkc | function | Raydium | SVN |

raydium_network_netcall_exec function in network.c in Raydium SVN revision 312 and earlier allows remote attackers to cause a denial of service (application crash) via a packet of type 0xFF, which causes a null dereference.


Multiple heap-based buffer overflows in Symante

heap-based | overflows | Symantec | Multiple | Netware | VERITAS | Windows | Server | Remote | buffer | Backup | Agent | Exec |

Multiple heap-based buffer overflows in Symantec VERITAS Backup Exec for Netware Server Remote Agent for Windows Server 9.1 and 9.2 (all builds), Backup Exec Continuous Protection Server Remote Agent for Windows Server 10.1 (builds 10.1.325.6301, 10.1.326.1401, 10.1.326.2501, 10.1.326.3301, and 10.1.327.401), and Backup Exec for Windows Server and Remote Agent 9.1 (build 9.1.4691), 10.0 (builds 10.0.5484 and 10.0.5520), and 10.1 (build 10.1.5629) allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted RPC message.


lib/exec/fetch.php in DokuWiki before 2006-03-0

lib/exec/fetchphp | 2006-03-09e | attackers | DokuWiki | service | denial | allows | before | remote | cause |

lib/exec/fetch.php in DokuWiki before 2006-03-09e allows remote attackers to cause a denial of service (CPU consumption) via large w and h parameters, when resizing an image.


hook.c in BitchX 1.1-final allows remote IRC se

containing | arbitrary | receives | executes | commands | function | 11-final | exceeds | certain | strings | injects | execute | servers | sending | allows | BitchX | remote | client | bounds | shell | table | hookc | which | NICK | data | hash | EXEC | hook | IRC |

hook.c in BitchX 1.1-final allows remote IRC servers to execute arbitrary commands by sending a client certain data containing NICK and EXEC strings, which exceeds the bounds of a hash table, and injects an EXEC hook function that receives and executes shell commands.


Software vulnerabilities results 1 to 20 of 320     
Page: 12345...17