outside software vulnerabilities
vulnerabilities.aspcode.net
Searching outside software vulnerabilities
Bug in AMD K6 processor on Linux 2.0.x and 2.1.
processor
|
kernels
|
service
|
allows
|
denial
|
users
|
cause
|
Linux
|
local
|
21x
|
Bug
|
20x
|
AMD
|
Bug in AMD K6 processor on Linux 2.0.x and 2.1.x kernels allows local users to cause a denial of service (crash) via a particular sequence of instructions, possibly related to accessing addresses outside of segments.
Mac OS Runtime for Java (MRJ) 2.2.3 allows remo
Runtime
|
Java
|
Mac
|
Mac OS Runtime for Java (MRJ) 2.2.3 allows remote attackers to use malicious applets to read files outside of the CODEBASE context via the ARCHIVE applet parameter.
Directory traversal vulnerability in RaidenFTPD
vulnerability
|
RaidenFTPD
|
Directory
|
traversal
|
before
|
Server
|
build
|
Directory traversal vulnerability in RaidenFTPD Server 2.1 before build 952 allows attackers to access files outside the ftp root via dot dot attacks, such as (1) .... in CWD, (2) .. in NLST, or (3) ... in NLST.
Directory traversal vulnerability in chuid 1.2
vulnerability
|
attackers
|
ownership
|
Directory
|
traversal
|
outside
|
earlier
|
upload
|
change
|
allows
|
remote
|
chuid
|
files
|
via
|
Directory traversal vulnerability in chuid 1.2 and earlier allows remote attackers to change the ownership of files outside of the upload directory via a .. (dot dot) attack.
Directory traversal vulnerability in Cobalt RAQ
password-protected
|
vulnerability
|
attackers
|
traversal
|
Directory
|
possibly
|
outside
|
Cobalt
|
allows
|
remote
|
files
|
root
|
read
|
via
|
RAQ
|
web
|
Directory traversal vulnerability in Cobalt RAQ 4 allows remote attackers to read password-protected files, and possibly files outside the web root, via a .. (dot dot) in an HTTP request.
Directory traversal vulnerability in BearShare
vulnerability
|
BearShare
|
Directory
|
traversal
|
Directory traversal vulnerability in BearShare 4.0.5 and 4.0.6 allows remote attackers to read files outside of the web root by hex-encoding the "/" (forward slash) or "." (dot) characters.
Unknown vulnerability in the directory parser f
vulnerability
|
directory
|
Connect
|
Unknown
|
Direct
|
parser
|
Linux
|
Unknown vulnerability in the directory parser for Direct Connect 4 Linux (dcgui) before 0.2.2 allows remote attackers to read files outside the sharelist.
The Administration Console for BEA Tuxedo 8.1 a
Administration
|
attackers
|
determine
|
existence
|
modified
|
argument
|
Console
|
outside
|
INIFILE
|
earlier
|
allows
|
remote
|
Tuxedo
|
files
|
paths
|
root
|
BEA
|
web
|
via
|
The Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to determine the existence of files outside the web root via modified paths in the INIFILE argument.
rsync before 2.6.1 does not properly sanitize p
before
|
rsync
|
rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot, which allows remote attackers to write files outside of the module's path.
rssh 2.0 through 2.1.x expands command line arg
authenticated
|
existence
|
arguments
|
determine
|
directory
|
entering
|
expands
|
through
|
command
|
outside
|
allows
|
remote
|
before
|
chroot
|
users
|
files
|
which
|
rssh
|
line
|
jail
|
21x
|
rssh 2.0 through 2.1.x expands command line arguments before entering a chroot jail, which allows remote authenticated users to determine the existence of files in a directory outside the jail.
Directory traversal vulnerability in extproc in
$ORACLE_HOME\bin
|
vulnerability
|
libraries
|
arbitrary
|
attackers
|
traversal
|
Directory
|
outside
|
extproc
|
access
|
Oracle
|
allows
|
remote
|
10g
|
Directory traversal vulnerability in extproc in Oracle 9i and 10g allows remote attackers to access arbitrary libraries outside of the $ORACLE_HOME\bin directory.
Adobe Acrobat and Acrobat Reader 6.0 allow remo
attackers
|
arbitrary
|
Shockwave
|
embedded
|
contains
|
Acrobat
|
remote
|
Reader
|
Adobe
|
files
|
allow
|
read
|
file
|
via
|
PDF
|
Adobe Acrobat and Acrobat Reader 6.0 allow remote attackers to read arbitrary files via a PDF file that contains an embedded Shockwave (swf) file that references files outside of the temporary directory.
Linux-VServer 1.24 allows local users with root
Linux-VServer
|
Linux-VServer 1.24 allows local users with root privileges on a virtual server to gain access to the filesystem outside the virtual server via a modified chroot-again exploit using the chmod command.
Pico Server (pServ) 3.2 and earlier allows loca
Server
|
Pico
|
Pico Server (pServ) 3.2 and earlier allows local users to read arbitrary files as the pServ user via a symlink to a file outside of the web document root.
Unspecified vulnerability in Polipo 0.9.8 and e
vulnerability
|
Unspecified
|
Polipo
|
Unspecified vulnerability in Polipo 0.9.8 and earlier allows attackers to read files outside of the web root.
Dev-Editor 3.0 allows remote attackers to acces
Dev-Editor
|
directory
|
substring
|
attackers
|
outside
|
access
|
remote
|
allows
|
whose
|
root
|
name
|
any
|
web
|
Dev-Editor 3.0 allows remote attackers to access any directory outside the web root whose name is a substring of the web root directory name.
Directory traversal vulnerability in ELOG befor
vulnerability
|
Directory
|
traversal
|
before
|
ELOG
|
Directory traversal vulnerability in ELOG before 2.6.1 allows remote attackers to access arbitrary files outside of the elog directory via "../" (dot dot) sequences in the URL.
The Admin Upload Image functionality in Joomla!
functionality
|
Joomla
|
before
|
Upload
|
Admin
|
Image
|
The Admin Upload Image functionality in Joomla! before 1.0.11 allows remote authenticated users to upload files outside of the /images/stories/ directory via unspecified vectors.
Directory traversal vulnerability in TFTPdWin 0
vulnerability
|
traversal
|
Directory
|
TFTPdWin
|
Directory traversal vulnerability in TFTPdWin 0.4.2 allows remote attackers to read or modify arbitrary files outside the TFTP root via unspecified vectors.
Mozilla Firefox before 2.0.0.5 allows remote at
Firefox
|
Mozilla
|
before
|
Mozilla Firefox before 2.0.0.5 allows remote attackers to execute arbitrary code with chrome privileges by calling an event handler from an unspecified "element outside of a document."
Software vulnerabilities results 1 to 20 of 69
Page:
1
2
3
4
►