opt x software vulnerabilities

Searching opt x software vulnerabilities

The X Windows service is running.

/opt/JSparm/bin/perfmon program in Solaris allo

/opt/JSparm/bin/perfmon program in Solaris allows local users to create arbitrary files as root via the Logging File option in the GUI.

X-News (x_news) 1.1 and earlier allows attacker

X-News |

X-News (x_news) 1.1 and earlier allows attackers to authenticate as other users by obtaining the MD5 checksum of the password, e.g. via sniffing or the users.txt data file, and providing it in a cookie.

Cross-site scripting (XSS) vulnerability in x_s

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in x_stat_admin.php in x-stat 2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the phpinfo action.

x_news.php in X-News (x_news) 1.1 and earlier a

x_newsphp | X-News |

x_news.php in X-News (x_news) 1.1 and earlier allows remote attackers to gain administrative privileges by stealing and replaying the md5_password cookie.

Multiple buffer overflows in Options Parsing To

Multiple buffer overflows in Options Parsing Tool (OPT) shared library 3.18 and earlier, when used in setuid programs, may allow local users to execute arbitrary code via long command line options that are fed into macros such as opt_warn_2, as used in functions such as opt_atoi.

Unknown vulnerability in QuickTime Java in Mac

Unknown vulnerability in QuickTime Java in Mac OS X v10.3 and Mac OS X Server 10.3 allows attackers to gain "unauthorized access to a system."

Unknown vulnerability in fs_usage in Mac OS X 1

vulnerability | fs_usage | Unknown | Mac |

Unknown vulnerability in fs_usage in Mac OS X 10.2.8 and 10.3.2 and Mac OS X Server 10.2.8 and 10.3.2 allows local users to gain privileges via unknown attack vectors.

Unknown vulnerability in CoreFoundation for Mac

CoreFoundation | vulnerability | Unknown | Mac |

Unknown vulnerability in CoreFoundation for Mac OS X 10.3.2, related to "notification logging."

Unknown vulnerability in the CUPS printing syst

Unknown vulnerability in the CUPS printing system in Mac OS X 10.3.3 and Mac OS X 10.2.8 with unknown impact, possibly related to a configuration file setting.

Unknown vulnerability in CoreFoundation in Mac

CoreFoundation | vulnerability | Unknown | Mac |

Unknown vulnerability in CoreFoundation in Mac OS X 10.3.3 and Mac OS X 10.3.3 Server, related to "the handling of an environment variable," has unknown attack vectors and unknown impact.

Unknown vulnerability related to "the handling

Unknown vulnerability related to "the handling of large requests" in RAdmin for Apple Mac OS X 10.3.3 and Mac OS X 10.2.8 may allow attackers to have unknown impact via unknown attack vectors.

Cisco IOS 11.1(x) through 11.3(x) and 12.0(x) t

Cisco | IOS |

Cisco IOS 11.1(x) through 11.3(x) and 12.0(x) through 12.2(x), when configured for BGP routing, allows remote attackers to cause a denial of service (device reload) via malformed BGP (1) OPEN or (2) UPDATE messages.

HP-UX B.11.00 and B.11.11 with B6848AB GTK+ Sup

HP-UX B.11.00 and B.11.11 with B6848AB GTK+ Support Libraries installed uses insecure directory permissions, which allows local users to gain privileges via files in /opt/gnome/src/GLib/.

Heap-based buffer overflow in the env_opt_add f

Heap-based buffer overflow in the env_opt_add function in telnet.c for various BSD-based Telnet clients allows remote attackers to execute arbitrary code via responses that contain a large number of characters that require escaping, which consumers more memory than allocated.

IBM Tivoli Micromuse Netcool/NeuSecure 3.0.236

Netcool/NeuSecure | Micromuse | Tivoli | IBM |

IBM Tivoli Micromuse Netcool/NeuSecure 3.0.236 has world-readable permissions for (1) /etc/neusecure.conf, (2) /opt/NeuSecure/etc/cms-3.0.236.buildconf, and (3) /opt/NeuSecure/bin/ns_archiver.log, which allows local users to read sensitive information such as passwords. NOTE: IBM has privately confirmed to CVE that a fix is available for these issues.

IBM Tivoli Micromuse Netcool/NeuSecure 3.0.236

Netcool/NeuSecure | Micromuse | Tivoli | IBM |

IBM Tivoli Micromuse Netcool/NeuSecure 3.0.236 stores cleartext passwords in the (1) CMS_DBPASS, (2) CMSM_DBPASS, and (3) RPT_DBPASS fields in /etc/neusecure.conf, and in (4) /opt/NeuSecure/bin/ns_archiver.log, which allows local users to gain privileges. NOTE: IBM has privately confirmed to CVE that a fix is available for these issues.

SQL injection vulnerability in x-statistics.php

SQL injection vulnerability in x-statistics.php in X-Scripts X-Statistics 1.20 allows remote attackers to execute arbitrary SQL commands via the User-Agent HTTP header.

PHP remote file inclusion vulnerability in incl

PHP remote file inclusion vulnerability in include/urights.php in Outreach Project Tool (OPT) Max 1.2.6 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the CRM_inc parameter.

Sun Java System Access Manager (formerly Java S

Sun Java System Access Manager (formerly Java System Identity Server) before Tuesday, July 10, 2007, when the message debug level is configured in the com.iplanet.services.debug.level property in AMConfig.properties, logs cleartext login passwords, which allows local users to gain privileges by reading /var/opt/SUNWam/debug/amAuth.

Software vulnerabilities results 1 to 20 of 563

Page: 12 3 4 5...29 ►

opt x software vulnerabilities

vulnerabilities.aspcode.net

Searching opt x software vulnerabilities