opening software vulnerabilities
vulnerabilities.aspcode.net
Searching opening software vulnerabilities
Winamp 2.78 and 2.77, when opening a wma file t
Winamp
|
Winamp 2.78 and 2.77, when opening a wma file that requires a license, sends the full path of the Temporary Internet Files directory to the web page that is processing the license, which could allow malicious web servers to obtain the pathname.
The XMLHttpRequest object (XMLHTTP) in Netscape
XMLHttpRequest
|
object
|
The XMLHttpRequest object (XMLHTTP) in Netscape 6.1 and Mozilla 0.9.7 allows remote attackers to read arbitrary files and list directories on a client system by opening a URL that redirects the browser to the file on the client, then reading the result using the responseText property.
Linux kernel 2.4.1 through 2.4.19 sets root's N
kernel
|
Linux
|
Linux kernel 2.4.1 through 2.4.19 sets root's NR_RESERVED_FILES limit to 10 files, which allows local users to cause a denial of service (resource exhaustion) by opening 10 setuid binaries.
The /proc filesystem in Linux allows local user
information
|
permissions
|
/proc/self
|
filesystem
|
sensitive
|
ownership
|
executing
|
various
|
entries
|
program
|
opening
|
allows
|
setuid
|
change
|
causes
|
obtain
|
before
|
/proc
|
Linux
|
those
|
local
|
which
|
users
|
fail
|
The /proc filesystem in Linux allows local users to obtain sensitive information by opening various entries in /proc/self before executing a setuid program, which causes the program to fail to change the ownership and permissions of those entries.
TsFtpSrv.exe in Broker FTP 6.1.0.0 allows remot
TsFtpSrvexe
|
Broker
|
FTP
|
TsFtpSrv.exe in Broker FTP 6.1.0.0 allows remote attackers to cause a TsFtpSrv.exe to exit with an exception by opening and immediately closing a connection.
MySQL before 4.0.20 allows remote attackers to
before
|
MySQL
|
MySQL before 4.0.20 allows remote attackers to cause a denial of service (application crash) via a MATCH AGAINST query with an opening double quote but no closing double quote.
Hotfoon 4.0 does not notify users before openin
arbitrary
|
attackers
|
browsers
|
opening
|
execute
|
Hotfoon
|
certian
|
remote
|
window
|
notify
|
before
|
allow
|
links
|
users
|
could
|
which
|
sent
|
link
|
does
|
chat
|
code
|
web
|
not
|
via
|
Hotfoon 4.0 does not notify users before opening links in web browsers, which could allow remote attackers to execute arbitrary code via a certian link sent in a chat window.
The Altiris Client Service for Windows 5.6 SP1
Service
|
Windows
|
Altiris
|
Hotfix
|
Client
|
SP1
|
The Altiris Client Service for Windows 5.6 SP1 Hotfix E (5.6.181) allows local users to execute arbitrary commands by opening the AClient tray icon and using the View Log File option, a different vulnerability than CVE-2005-1590.
Trend OfficeScan Corporate Edition 5.58 and pos
OfficeScan
|
Corporate
|
Edition
|
Trend
|
Trend OfficeScan Corporate Edition 5.58 and possibly earler does not drop privileges when opening a help window from a virus detection pop-up window, which allows local users to gain SYSTEM privileges.
Novell Client Firewall (NCF) 2.0, as based on t
Firewall
|
Client
|
Novell
|
Novell Client Firewall (NCF) 2.0, as based on the Agnitum Outpost Firewall, allows local users to execute arbitrary code with SYSTEM privileges by opening the NCF tray icon and using the Help functionality to launch programs with SYSTEM privileges.
ppxp does not drop root privileges before openi
privileges
|
arbitrary
|
commands
|
execute
|
opening
|
allows
|
before
|
which
|
users
|
local
|
files
|
root
|
ppxp
|
does
|
drop
|
not
|
log
|
ppxp does not drop root privileges before opening log files, which allows local users to execute arbitrary commands.
gr_osview in SGI IRIX does not drop privileges
privileges
|
overwrite
|
gr_osview
|
arbitrary
|
opening
|
allows
|
option
|
before
|
local
|
users
|
which
|
files
|
IRIX
|
drop
|
does
|
not
|
via
|
SGI
|
gr_osview in SGI IRIX does not drop privileges before opening files, which allows local users to overwrite arbitrary files via the -s option.
BPFTPServer service in BulletProof FTP Server 2
BulletProof
|
BPFTPServer
|
service
|
Server
|
FTP
|
BPFTPServer service in BulletProof FTP Server 2.4.0.31 does not properly drop privileges before opening files through the Help menu, which allows local users to gain privileges.
nvstatsmngr.exe process in BakBone NetVault 7.1
nvstatsmngrexe
|
privileges
|
properly
|
NetVault
|
process
|
opening
|
BakBone
|
before
|
allows
|
which
|
local
|
users
|
files
|
gain
|
Help
|
menu
|
does
|
drop
|
not
|
via
|
nvstatsmngr.exe process in BakBone NetVault 7.1 does not properly drop privileges before opening files, which allows local users to gain privileges via the Help menu.
SecurityAgent in Apple Mac OS X 10.4.1 allows a
SecurityAgent
|
Apple
|
Mac
|
SecurityAgent in Apple Mac OS X 10.4.1 allows attackers with physical access to bypass the locked screensaver and launch background applications by opening a URL from a text input field.
Firefox before 1.0.5 allows remote attackers to
Firefox
|
before
|
Firefox before 1.0.5 allows remote attackers to steal sensitive information by opening a malicious link in the Firefox sidebar using the _search target, then injecting script into other pages via a data: URL.
Firefox, when opening Microsoft Word documents,
applications
|
permissions
|
arbitrary
|
attackers
|
documents
|
Microsoft
|
properly
|
sections
|
Firefox
|
opening
|
allows
|
Office
|
remote
|
shared
|
write
|
which
|
data
|
open
|
Word
|
does
|
set
|
not
|
Firefox, when opening Microsoft Word documents, does not properly set the permissions on shared sections, which allows remote attackers to write arbitrary data to open applications in Microsoft Office.
Nortel Contivity VPN Client V05_01.030, when co
authentication
|
configuring
|
certificate
|
privileges
|
Contivity
|
V05_01030
|
properly
|
opening
|
program
|
allows
|
system
|
Client
|
Nortel
|
dialog
|
which
|
local
|
users
|
Open
|
File
|
gain
|
does
|
used
|
drop
|
box
|
VPN
|
not
|
Nortel Contivity VPN Client V05_01.030, when configuring a certificate to be used as authentication, does not properly drop system privileges, which allows local users to gain privileges by opening a program with the File Open dialog box.
PHP remote file inclusion vulnerability in WebC
vulnerability
|
WebCalendar
|
inclusion
|
before
|
remote
|
file
|
PHP
|
PHP remote file inclusion vulnerability in WebCalendar before 1.0.1 allows remote attackers to execute arbitrary PHP code when opening settings.php, possibly via send_reminders.php or other scripts.
Genius VideoCAM NB Driver does not drop privile
privileges
|
arbitrary
|
VideoCAM
|
opening
|
allows
|
saving
|
Genius
|
Driver
|
dialog
|
"save
|
users
|
local
|
files
|
which
|
does
|
drop
|
gain
|
as"
|
via
|
not
|
Genius VideoCAM NB Driver does not drop privileges when saving files, which allows local users to gain privileges by opening arbitrary files via the "save as" dialog.
Software vulnerabilities results 1 to 20 of 57
Page:
1
2
3
►